CODEWITHSUNDEEP
authlete
Rakesh Kumar
Rakesh Kumar

Reputation: 3139

Authlete api with Identity Server4

We are trying to use Authlete api with Identity Server4 to create and authorize access token but I can't seem to figure out how we can setup with .NET Core?

Upvotes: 0

Views: 153

Answers (1)

Takahiko Kawasaki
Takahiko Kawasaki

Reputation: 19011

IdentityServer4 is software written in C#. If you want to call Web APIs of Authlete from C#, you can use authlete-csharp library (which is available as Authlete.Authlete NuGet package). The API reference of authlete-csharp library is available here.

The following are sample implementations of an authorization server & OpenID provider and a resource server which use authlete-csharp library.

The following article is an introduction to csharp-oauth-server and csharp-resource-server.

Basically, if you use Authlete, you don't have to use IdentityServer4. However, if you have strong reasons to use IdentityServer4, some parts of Authlete APIs may work for your purposes.

For example, if you want to use Authlete just as a generator of access tokens, Authlete's /api/auth/token/create API may work.

// An instance of IAuthleteApi interface.
IAuthleteApi api = ......

// Prepare a request to /api/auth/token/create API.
var request = new TokenCreateRequest
{
    GrantType = ......,
    ClientId  = ......,
    Subject   = ......,
    Scopes    = ......,
    ......
};

// Call /api/auth/token/create API.
TokenCreateResponse response = await api.TokenCreate(request);

// If the API call successfully generated an access token.
if (response.Action = TokenCreateAction.OK)
{
    // The newly issued access token.
    string accessToken = response.AccessToken;
}

If you want to use Authlete as a storage for metadata of client applications, /api/client/* APIs (and "Client ID Alias" feature) may work.

// An instance of IAuthleteApi interface.
IAuthleteApi api = ......

// Prepare a request to /api/client/create API.
var request = new Client
{
    ClientName   = ......,
    Developer    = ......,
    ClientType   = ......,
    RedirectUris = ......,
    ......
};

// Call /api/client/create API. Client ID and client secret
// are automatically generated and assigned by Authlete.
Client client = await api.CreateClient(request);

// You can update client information by calling
// /api/client/update/{clientId} API.
client = await api.UpdateClient(client);

Authlete manages multiple services. Service here is an instance which corresponds to one authorization server & OpenID provider. Even a service itself can be managed by /api/service/* APIs.

// An instance of IAuthleteApi interface.
IAuthleteApi api = ......

// Prepare a request to /api/service/create API.
var request = new Service
{
    ServiceName     = ......,
    Issuer          = ......,
    SupportedScopes = ......,
    ......
};

// Call /api/service/create API. A pair of API key and
// API secret to manage the service is automatically
// generated and assigned by Authlete.
Service service = await api.CreateService(request);

// You can update service information by calling
// /api/service/update/{serviceApiKey} API.
service = await api.UpdateService(service);

Although services and client applications can be managed by Authlete APIs, I recommend you use web consoles (Service Owner Console & Developer Console) to manage them.

Many libraries including IdentityServer4 require programming for configuration of an authorization server itself, registration of client applications and database setup. I didn't want to do such things and finally decided to develop not a library but a SaaS (= APIs + permanent storage) in order to free developers from the burden. It was the reason Authlete was born. (I'm a co-founder of Authlete, Inc.)

Upvotes: 2

Related Questions