Reputation: 29427
Asp.net authentication in its own web application
I currently have two web applications, one of which is a web api, which both have it's own implementation of ASP.NET Identity for authenticating users (first one is cookie and second one is bearer tokens). I need, in the near future, to add a third web site to the family and was thinking to move the authentication logic in a standalone web application which could serve all the orhers.
For example: instead of authenticating to www.mysite.com and/or api.mysite.com, I would like that both the applications could authenticate against a new website, like e.g. login.mysite.com, as microsoft does.
How can I achieve something like this? Does somebody has any direction to start with?
Upvotes: 1
Views: 213
Answers (1)
Reputation: 3315
What you need is an Identity Server which will authenticate the requests and give you back an access token. You can then use the access token to make subsequent requests to APIs and websites etc. As long as the access token is valid you will be able to make requests. There is great .net based open source solution available for Identity Server. Have a look at Thinktecture. You can download the source and demo projects to try yourself.
Upvotes: 1
Related Questions
- ASP.NET MVC and Login Authentication
- Authenticate user in ASP.NET MVC with identities
- ASP.NET MVC - Same authentication between two applications
- Authenticatnig ASP.NET MVC application against Sitecore users
- ASP.NET Identity + Windows Authentication for Intranet Site
- asp.net Identity outside of MVC
- using asp.net authentication with custom authentication
- Authentication by user
- User authentication in asp.net or mvc
- asp.net mvc and webforms shared authentication