Skip to content

A sample showing how to setup ASP.NET Core Identity API endpoints for authentication

Notifications You must be signed in to change notification settings

kjartanvalur/IdentityEndpointsSample

 
 

Repository files navigation

Background

https://devblogs.microsoft.com/dotnet/improvements-auth-identity-aspnetcore-8/

In .NET 8 preview 6, we've added new APIs to allow exposing endpoints to register, login and refresh bearer tokens. This is a simple API that returns tokens (or sets cookies) that is optimized usage with 1st party applications (no delegated authentication). The tokens are self contained, and generated using the same technique as cookie authentication. These are NOT JWTs, they are self-contained tokens. To make issued tokens work across servers, data protection needs to be configured with shared storage.

New APIs

There are 2 new concepts being introduced:

  1. A new bearer token authentication handler. This authentication handler supports token validation and issuing and integrates with the normal ASP.NET Core authentication system. It can be used standalone without identity.
  2. A set of HTTP endpoints for registering a new user, exchanging credentials for a token/cookie and refreshing tokens using the identity APIs.

These new building blocks make it easier to build authenticated 1st party applications (applications that don't delegate authentication).

About

A sample showing how to setup ASP.NET Core Identity API endpoints for authentication

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • TypeScript 65.0%
  • HTML 24.1%
  • C# 9.8%
  • Sass 1.1%