Example IdentityServer implementation, including a basic API (protected resource) and MVC app (client application).
This is the completed sample code for the Getting Started with IdentityServer4 and Duende IdentityServer tutorial on scottbrady91.com.
For more advanced use cases, check out some of my other articles to learn how to:
- Choose the right architecture for protecting your SPA
- Using asymmetric secrets for client authentication (no more shared secrets!)
- Handle API gateways authorization and API-to-API communication
- Outsourcing token signing to Azure Key Vault
For older versions of this tutorial, check out the aspnetcore1 and aspnetcore2 branches.