Comments (11)
@ilmax @Bartmax still no sign of a port of NWebSec for vNext. Should we simply replace it by something else, that would also work on CoreCLR?
from openiddict-core.
Maybe we should ping @klings :)
from openiddict-core.
Hey guys, you're well underway with your ASP.NET 5 support? Which NWebsec libraries have you been using, the middleware? ASP.NET 5 support is next in line for NWebsec, but there's no trace of it on GitHub as I've been poking around with the new ASP.NET locally so far.
from openiddict-core.
Hey Andrรฉ (and sorry for the late answer)! ๐
Hey guys, you're well underway with your ASP.NET 5 support?
Actually, OpenIddict is totally new and was designed from scratch for ASP.NET 5, but ASOS (the OpenID Connect library behind this project: https://github.com/aspnet-contrib/AspNet.Security.OpenIdConnect.Server) comes with a default sample that demonstrates how to use NWebSec with ASP.NET 5 for a long time now (more than a year, actually: aspnet-contrib/AspNet.Security.OpenIdConnect.Server@0111029 ๐)
Which NWebsec libraries have you been using, the middleware?
Yep, the main middleware. Ideally, we'd also like to use the MVC adapter, since OpenIddict internally uses a controller to render the critical authorization pages.
ASP.NET 5 support is next in line for NWebsec, but there's no trace of it on GitHub as I've been poking around with the new ASP.NET locally so far.
If you want us to test the early bits, don't hesitate, we're now pretty good at that ๐
(if you have specific questions about ASP.NET 5 or DNX, please feel free to ping me on JabbR: https://jabbr.net/#/rooms/AspNetvNext)
from openiddict-core.
I've made progress and the first version of the vnext packages are out. This includes ASP.NET 5 middleware, as well as an updated MVC package. It's a gamma release, as I'll have to make a few minor breaking changes before I'm happy calling it an RC. Still, it works (mostly) as before, and should be safe to "put in production". The middleware is almost identical, but there were a few system.web specific things that had to go in the MVC package.
You can keep an eye on the progress here NWebsec/NWebsec#59 as I make my way to an RC.
Let me know should you run into any issues.
from openiddict-core.
Woooo, it looks really nice, we'll give it a try ASAP! ๐
Thanks for the info, Andrรฉ.
/cc @damccull
from openiddict-core.
Just waiting on rc2 HTTPS bug to be fixed so I can use it properly. I'll be submitting an issue on it today.
from openiddict-core.
FYI, it's not a bug. See my remark on JabbR ๐
from openiddict-core.
Haha! Looking.
On Tue, Dec 8, 2015, 09:22 Kรฉvin Chalet [email protected] wrote:
FYI, it's not a bug. See my remark on JabbR [image: ๐]
โ
Reply to this email directly or view it on GitHub
#14 (comment).
from openiddict-core.
Today we merged in an update using the aspnet5 nwebsec middleware (#37). I'm looking at how to allow OpenIddict users to set the CSP headers themselves.
from openiddict-core.
Closing as invalid (OpenIddict.Security
- that used NWebsec - has been removed from the core code base).
from openiddict-core.
Related Issues (20)
- integration openiddict identityServer .net core 7 with client .net framework 4.8 HOT 1
- Oracle doesn't support `RepeatableRead` isolation level. HOT 3
- I'm unable to get the authorization code when trying to authenticate an application with OpenIdDict HOT 4
- How to make the BFF Proxy Sample Dantooine work? HOT 65
- SPA and BFF on different sub-domains, BFFs for mobile apps HOT 6
- Getting The security token is missing during login validation on postman client authorization or web client authorization HOT 2
- InvalidOperationException: Cannot redirect to the authorization endpoint, the configuration may be missing or invalid. HOT 7
- OpenIddict + SPA UI Question HOT 9
- Remove `Uri.IsWellFormedOriginalString()`/`Uri.IsWellFormedUriString()`
- The specified token is invalid since we renewed SSL certificate in Azure key vault HOT 14
- invalid_token returned by authorization callback HOT 13
- Claims not found in token of external provider (Microsoft) HOT 5
- Using KeyVaultSecurityKey as asymmetric signing key and/or symmetric encryption key HOT 6
- unauthorized_client when changing url HOT 6
- Using "role" claims from external providers in access tokens HOT 7
- Update the OpenIddict client ASP.NET Core/OWIN integrations to support overriding the requested scopes via `AuthenticationProperties`
- openiddict 5.0.1 => 5.1.0, breaking change when adding amr array claim to id_token HOT 5
- Sharing the same signing key in a multi tenant environment HOT 7
- Enable the use of Azure Workload Identities with `.AddClient(options => { options.UseWebProviders().AddMicrosoft...})` HOT 3
- Microsoft Entra: ResponseMode "query" is not working good HOT 12
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from openiddict-core.