openiddict-core
microsoft-authentication-library-for-js
Our great sponsors
openiddict-core | microsoft-authentication-library-for-js | |
---|---|---|
35 | 27 | |
4,074 | 3,432 | |
2.1% | 1.9% | |
9.4 | 9.6 | |
3 days ago | 3 days ago | |
C# | TypeScript | |
Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
openiddict-core
-
Recommendations for Free Library/Service to Separate Authentication in Legacy ASP.NET (ASPX) Application
Openiddict is also an option. Check it out.https://github.com/openiddict/openiddict-core
- Why would I ever choose IdentityServer over Azure AD B2C?
-
A journey to build a central identity management service in .Net with Vue.js SPA frontend
To implement an OAuth server together with OpenID connect specification, I used a free and open source framework called Openiddict. You should checkout their GitHub repository at github.com/openiddict/openiddict-core. It is a nice and feature rich tool which help you get started very fast. However, comparing to alternatives like identity server, it needs more implementation rather functionalities coming out of the box.
-
Blazor Server Identity alternative?
You can use Openidict https://documentation.openiddict.com/, give it a try
- ASP.NET Core: Autenticación multi-tenant con OpenID Connect. (Parte 1)
-
Why is there a lack of cool repos?
Openiddict to create your own OpenID Connect server if you want to deep dive into auth https://github.com/openiddict/openiddict-core
-
Is using next-auth instead of IdentityServer a bad idea?
If you do want a .NET IdP then you could look into OpenIddict but will require some hands on work, at a minimum authorisation controllers. If you're looking for something more out of the box OrchardCore's OpenId module might be better for you.
-
JWT and LocalStorage in ServerSideBlazor
I personally prefer using Cookies with openiddict.
-
I got tired of all the boilerplate for .NET Web APIs, so I made a tool to help. Craftsman v0.15 is out with better DDD support and more!
Also, the OAuth bit is very cool!! Do you plan to support OpenIddict it’s a free federated identity server.
-
The bullshit-less ASP.NET Blazor WASM JWT authentication tutorial from the ground up.
Okta is a great example of an IdP, although there are many others. Auth0, Ping Federate, Amazon cognito, etc. OP also mentioned Identity Server, which is a framework for implementing your own IdP. I've also personally used an open-source library called [OpenIDDict[(https://documentation.openiddict.com/) to great success. I would highly recommend attempting to implement one of these providers as a learning exercise.
microsoft-authentication-library-for-js
-
Sveltekit Microsoft authentication
You can use the sample provided at https://github.com/AzureAD/microsoft-authentication-library-for-js/tree/dev/samples/msal-node-samples and integrate it in hooks.server.ts.
-
Token request cannot be made without authorization code or refresh token when I add "teamsAppInstallation.ReadWriteSelfForChat.All" scope
I'm utilizing the Authorization Code sample provided in the MSAL Node.js library (https://github.com/AzureAD/microsoft-authentication-library-for-js/tree/dev/samples/msal-node-samples/auth-code), with the only modification being the addition of the aforementioned scope to my configuration. Below, I've shared the relevant segment of my customConfig.json and the primary code snippet where the error surfaces.
- Does Azure AD B2C only employ OAuth2 / OIDC? Does it support any other mechanisms?
-
No Token in the Browser Pattern using Azure API Management
As the backend handles the token acquisition, no other code or library, such as MSAL.js, is required in the single-page application itself. This also means that no tokens are required to be stored in the browser session or local storage. By encrypting and storing the access token in an HttpOnly cookie protects it from XSS attacks, and scoping it to the API domain and setting SameSite=strict ensures that the cookie is automatically sent with all proxied API first-party requests. More on SameSite cookies can be read here.
- Web app with SSO and MS Graph access?
-
Redirect to a custom login page when securing your Angular app with MSAL
The easiest way to secure Angular apps with the Microsoft Identity Platform is by using the MSAL (Microsoft Authentication Library) Angular package. This package contains Angular-specific building blocks for implementing MSAL in your app.
-
New to Azure, can Azure logic apps help me keep an API access token fresh throughout the day? The API access token only lasts for one hour before it has to be refreshed via a refresh token.
For example: https://github.com/AzureAD/microsoft-authentication-library-for-js
-
A noob question on security/authentication (Azure AD related)
I was imagining something like this, and since you’ve got it on the frontend already just throwing the token to the backend and letting it validate the token https://github.com/AzureAD/microsoft-authentication-library-for-js/tree/dev/samples/node-token-validation-samples/basic-sample
- [AskJS] Question about caching JWT in SPA
-
Laravel Azure Authentication with SPA
I did an azure ad implementation recently(laravel / SPA). I used the offical msal.js library (https://github.com/AzureAD/microsoft-authentication-library-for-js) to present the azure ad login screen. After successful login, I take the received azure ad access token and send it to my laravel based api. there, I verify the token and if valid and the user exists in the app, I create an access token for my apis and return it to the spa. The spa then uses this token for further requests, until the lifetime of the token expires. Hope that helps a bit, feel free to ask for details :)
What are some alternatives?
IdentityServer4 - OpenID Connect and OAuth 2.0 Framework for ASP.NET Core
Cypress - Fast, easy and reliable testing for anything that runs in a browser.
IdentityServer - The most flexible and standards-compliant OpenID Connect and OAuth 2.x framework for ASP.NET Core
laravel-azure-ad-oauth - Drop-in socialiate plugin for Laravel applications for Microsoft Azure SSO.
Keycloak - Open Source Identity and Access Management For Modern Applications and Services
IdentityServer4.Admin - The administration for the IdentityServer4 and Asp.Net Core Identity
amplify-js - A declarative JavaScript library for application development using cloud services.
dot-net6-vue-api - Dot net 6 Vue template
MySqlConnector - MySQL Connector for .NET
auth0-java - Java client library for the Auth0 platform