Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Repo info
Activity
  • Oct 22 16:49
    kevinchalet closed #1141
  • Oct 22 16:49
    kevinchalet closed #1133
  • Oct 22 16:10
    mdmoura closed #1145
  • Oct 22 16:10
    mdmoura commented #1145
  • Oct 22 12:28
    kevinchalet labeled #1145
  • Oct 22 12:28
    kevinchalet commented #1145
  • Oct 22 12:11
    mdmoura opened #1145
  • Oct 22 01:41
    kevinchalet labeled #1141
  • Oct 22 01:41
    kevinchalet commented #1141
  • Oct 22 01:40

    kevinchalet on dev

    Update the samples to enable SS… (compare)

  • Oct 22 01:40
    kevinchalet closed #1144
  • Oct 22 01:40
    kevinchalet closed #983
  • Oct 22 01:25
    kevinchalet synchronize #1144
  • Oct 22 00:47
    kevinchalet labeled #1144
  • Oct 22 00:47
    kevinchalet labeled #1144
  • Oct 22 00:47
    kevinchalet milestoned #1144
  • Oct 22 00:47
    kevinchalet assigned #1144
  • Oct 22 00:47
    kevinchalet opened #1144
  • Oct 22 00:47
    kevinchalet milestoned #983
  • Oct 22 00:47
    kevinchalet assigned #983
Kévin Chalet
@kevinchalet
Done. Can you please try again? (with 3.0.0-alpha1.19604.59) :smile:
Kévin Chalet
@kevinchalet
@Jimud1 did that work for you?
James
@Jimud1
Sorry @PinpointTownes just saw this, going to check now :)
Kévin Chalet
@kevinchalet
Haha, no problem :smile:
James
@Jimud1
Yeah all up and working again
Thanks so much for the help! Absolute legend
Kévin Chalet
@kevinchalet
lol, you're welcome :sweat_smile:
BTW, if you're interested in contributing or sponsoring the project, please don't hesitate!
bviale
@bviale
Hey, I had to go back using the 3.x version because I absolutely need the new EnableDegradedMode(); feature, my new requirement is to have my server working without any DB (I didn't find an easy way to use the 2.0.1 without database). Using the degraded mode, what is the way to sign in in a controller ? I'm having issues injecting the SignInManager<ApplicationUser> . Should I use services.AddIdentity<ApplicationUser, IdentityRole>() , without the AddEntityFrameworkStores part ?
Kévin Chalet
@kevinchalet
It's up to you. Identity itself won't work without a DB, so you may want to use something else.
bviale
@bviale
Ok I see. If I don't use Identity, the HandleTokenRequestContext event will never be triggered right ? Should I move all the user/password check and grant the claims in the controller then ?
Kévin Chalet
@kevinchalet
No, it's completely unrelated.
You can use either the events model (with HandleTokenRequestContext) or enable the pass-through mode and handle token requests in a MVC controller.
(well, I said a MVC controller but it could be a middleware or even a Carter module)
bviale
@bviale
My goal is to add a login page in the server itself , just like the AuthorizationServer in the CodeFlow sample
Kévin Chalet
@kevinchalet
What's preventing you from doing that?
bviale
@bviale
So I think I'll need to do my magic in the POST Account/Login and I'll don't need the HandleTokenRequestContext right ?
I'm trying to figure how I can actually log the user here without using _signInManager.PasswordSignInAsync()
Kévin Chalet
@kevinchalet
You can use the core authentication APIs provided by ASP.NET Core to create authentication cookies.
bviale
@bviale
Ok thanks, I'm going to try it

One last thing, I think it's a stupid one, I'm not able to simply use [Authorize] on my controllers.
InvalidOperationException: No authenticationScheme was specified, and there was no DefaultChallengeScheme found. The default schemes can be set using either AddAuthentication(string defaultScheme) or AddAuthentication(Action<AuthenticationOptions> configureOptions).

In my startup I'm using the snippet you sent me yesterday

I tried to set a scheme as a parameter in services.AddAuthentication(); but it didn't work
Kévin Chalet
@kevinchalet
The snippet I sent yesterday demonstrated how to use the password flow with the degraded mode. For the code flow - which is an interactive flow - you'll need extra things, like a cookie authentication middleware.
bviale
@bviale
oh ok I see, so both of my my issues will be gone once I'll set up the cookie authentification then, thanks
damccull
@damccull
Howdy. Been a very long time since I looked into openiddict and I've since gained a much better understanding of how the whole OIDC system works, though there's still some pain points and I still have to reference docs...a lot. Anyways, I was wondering what the current status for aspnetcore 3.0 is. I see the repo says the openiddict 3.0 code is still WIP, but can I use the 2.x branch with asp.net 3.0?
I see a post from @PinpointTownes about this very issue...so yes, I would like to try it out :D If it's available.
Man, I should read before I post, lol. Thanks @PinpointTownes I'll just download 2.0.1 and see how it goes :D
Kévin Chalet
@kevinchalet
@damccull haha, yeah, both 2.0.1 and 3.0 are compatible with ASP.NET Core.
If you need a production-ready stuff, go with 2.0.1. If you prefer the latest and coolest stuff, 3.0 is for you!
damccull
@damccull
@PinpointTownes is 3.0 stable enough to use on a low traffic game guild site without a bunch of crashes?
I think now that i finally understand how the actual flows work I might be able to get openiddict to work this time :D
Kévin Chalet
@kevinchalet
lol yeah :smile:
Kévin Chalet
@kevinchalet
FYI: 3.0 supports the device flow, in case you'd want to use it.
damccull
@damccull
Nice, i'll try that one then
though I'm not familiar with device flow yet. I'll check it out on the youtubes
Oh man..that'd be perfect for a discord bot
perhaps
oh yeah, def
that'd be perfect
damccull
@damccull
@PinpointTownes In the Dev branch's readme getting started example (understanding this is dev code) there is a spot in AddServer's options that sets options.UseAspNetCore(), only that doesn't seem to be recognized as a valid method. Neither does .AddValidation() and its children. Did something change I'm not picking up?
Kévin Chalet
@kevinchalet
@damccull did you forget to include the OpenIddict.AspNetCore package?
damccull
@damccull
@PinpointTownes Apparently I added OpenIddict as a package rather than OpenIddict.AspNetCore. So that's my mistake. Thanks for your help. Any idea why it would have not complained about that package on dotnet restore?
Kévin Chalet
@kevinchalet
OpenIddict is still a valid package, but it doesn't reference the ASP.NET Core hosts in 3.0, just the "core" core, server and validation stuff :smile:
If you want to integrate with ASP.NET Core, you need OpenIddict.Server.AspNetCore and OpenIddict.Validation.AspNetCore, that are referenced by the OpenIddict.AspNetCore metapackage.
Folks who want to integrate with legacy ASP.NET 4.x/OWIN apps can instead reference OpenIddict.Owin, which works exactly like OpenIddict.AspNetCore.
damccull
@damccull
Oh, ok. Makes sense. Thanks.
damccull
@damccull
So not to compare various kinds of fruit, but IdentityServer4 has a ton of options you have-to/can set on various kinds of registered clients. In openiddict I see only the RedirectUris, the clientsecret, and clientid. I like the simplicity, but is there anything I might need with the more advanced crap? Does openiddict support that extra stuff under the hood and it's just not in the examples?
Kévin Chalet
@kevinchalet
Keeping it not "too complicated" is 100% deliberate. We do expose a few options already, but if you need more advanced things, the events model will allow you to do whatever you want with a few lines of code.
It's a different approach, but you should be able to achieve whatever you want to do.
If you have a concrete example of an option you miss, I'm all ears :smile: