Comments (5)
As the name implies, we only care about compat with Identityserver
from identityserver4.accesstokenvalidation.
Ok, how about IdentityModel.AspNetCore.OAuth2Introspection does it supports 3rd party OAUTH2 server.
If yes, how do I configure it to send the clientid & client secret in Http Authoriztion Header , currently its sends in HTTP POST body.
from identityserver4.accesstokenvalidation.
It's implemented on the v4 branch -
Nuget is here:
https://www.nuget.org/packages/IdentityModel.AspNetCore.OAuth2Introspection/4.0.0-aultmore
I am planning to release this soon. give it a try.
from identityserver4.accesstokenvalidation.
Ok, will try out.
I see the example in the oauth introspection spec & RFC 7662 shows sending client id & secret in authorization header, curious to know the reason behind sending client id & client secret in HTTP body instead of authorization header in IdentityServer4.AccessTokenValidation & IdentityModel.AspNetCore.OAuth2Introspection library.
from identityserver4.accesstokenvalidation.
They are both allowed. Please open a feedback issue in the introspection repo.
from identityserver4.accesstokenvalidation.
Related Issues (20)
- IConfigureOptions<IdentityServerAuthenticationOptions>.Configure() isn't automatically called. HOT 7
- Expose OAuth2IntrospectionEvents in IdentityServerAuthenticationOptions HOT 1
- Exception does not show anything in logs ( try/finally)-IdentityServerAuthenticationHandler HOT 4
- Why are IdentityServerAuthenticationDefaults internal? HOT 1
- Does it work with .net framework 4.7.2? HOT 2
- Support opaque tokens with a dot when used together with JWT HOT 4
- when i upgrade to identitymode version 4 HOT 4
- v3.0.0版本中仍然使用了preview组件
- Is .NETStandard still supported? HOT 3
- Spelling error on documentation comment HOT 2
- Send extra parameters on reference token validation HOT 4
- How to delete a reference token from API in distributed cache? HOT 2
- How does caching (reference token validation) work? I need to invalidate cache when user resets the password. Please help. HOT 3
- IdentityServer4.AccessTokenValidation: The SSL connection could not be established HOT 5
- ConfigureJwtBearer hardcodes MapInboundClaims to false, NameIdentifier is Null IdentityServer, Sub not mapped to NameIdentifier HOT 5
- Any reason why updated version of this library can't stay .netstandard20 or 21? HOT 3
- Get ServiceProvider inside AddOpenIdConnect without BuildServiceProvider HOT 1
- Unable to configure httpClient of HttpDocumentRetriever. HOT 2
- Automatic scope validation? HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from identityserver4.accesstokenvalidation.