shoogn / oauth20server Goto Github PK

This is OAtuh 2.0 Server and OpenId Connect Provider, implemented by ASP.NET Core

License: GNU General Public License v3.0

C# 28.75% HTML 2.03% JavaScript 23.10% SCSS 45.93% CSS 0.19%

oauth20server's Introduction

OAuth20Server

This is OAtuh 2.0 Server and OpenId Connect Provider, this OAuth server is not a complete one, but by using it your users can login and register, also they can obtain access token and Idp token too. If you want to create this project from scratch please read my step by step explained article from here

Get Started

This OAuth server target .NET 6, so clone the project or download it. After that open the downloaded project with your prefere IDE (ex: Visual Studio). In the solution there is a folder named Models, inside this folder there is a class named ClientStore.cs this class accept a list of Clients and Clients here means your applications, or the applications that you would like to intracted with OAuth2 and OpenId Connect protocols.

Here is the signature of the Client object ( you can find it in the Models folder )

    public class Client
    {
        public Client()
        {

        }

        public string ClientName { get; set; }
        public string ClientId { get; set; }

        /// <summary>
        /// Client Password
        /// </summary>
        public string ClientSecret { get; set; }

        public IList<string> GrantType { get; set; }

        /// <summary>
        /// by default false
        /// </summary>
        public bool IsActive { get; set; } = false;
        public IList<string> AllowedScopes { get; set; }

        public string ClientUri { get; set; }
        public string RedirectUri { get; set; }

        public bool UsePkce { get; set; }
    }

How to register your Applications?

As I said in the prevoius step, there is a class named ClientStore and this object has an property named Clients with IEnumerable of Client return type For example, to register one client you should do like so:

 public class ClientStore
   {
       public IEnumerable<Client> Clients = new[]
       {
           new Client
           {
               ClientName = "blazorWasm",
               ClientId = "1",
               ClientSecret = "123456789",
               AllowedScopes = new[]{ "openid", "profile", "blazorWasmapi.readandwrite" },
               GrantType = GrantTypes.Code,
               IsActive = true,
               ClientUri = "https://localhost:7026",
               RedirectUri = "https://localhost:7026/signin-oidc",
               UsePkce = true,
           }
       };
   }

You can add more clients as you need, the one that shown here, is a front-end (ASP.NET Core Application) client and that is very clear from the AllowedScopes property by allowing openid scope which indicate that the OAuth20Server will return Idp token to the registerd application alond side access token.

oauth20server's People

Contributors

Stargazers

Watchers

oauth20server's Issues

Typo in appsettings.json for server

There is a typo in files appsettings.json and appsettings.Development.json. Should be "OAuthOptions" Instead of "OAuthOption".

AAAAA

Hi,

BBBBB

Token

hi, great job, at least did you implemented the token response? i see the code and lass, but i didn't see the response anywhere, can yu help me to understand?

i added the following code in the login, but i don't want to duplicate code

`if (loginResult.Succeeded)
{
var tokenHandler = new JwtSecurityTokenHandler();
var key = Encoding.ASCII.GetBytes("ChiaveChiaveChiaveChiaveChiaveChiave");
var tokenDescriptor = new SecurityTokenDescriptor
{
Subject = new ClaimsIdentity(new Claim[]
{
new Claim(ClaimTypes.Name, user.Id)
}),
Expires = DateTime.UtcNow.AddDays(7),
SigningCredentials = new SigningCredentials(new SymmetricSecurityKey(key), SecurityAlgorithms.HmacSha256Signature)
};
var token = tokenHandler.CreateToken(tokenDescriptor);
var tokenString = tokenHandler.WriteToken(token);

            return new LoginResponse { Succeeded = true,Token= tokenString };
        }`

can you help me, to call it by postMan,
where is the endpoint to call and how i should write the request parameters??

id_token support

Hi,
i tested your server, but openid client in .NET seems to request by default response type id_token for authorize request, which doesn't seem to be supported by your implementation.

any plans to add this?

https://openid.net/specs/oauth-v2-multiple-response-types-1_0.html