Reputation: 723
How to choose the right Microsoft.AspNetCore.Authentication alternative
I'm using AspNet Core identity for the authentication of my users. I want to connect to remote identity providers (Microsoft and Google). For Google, I think I'm fine with using Microsoft.AspNetCore.Authentication.Google (https://learn.microsoft.com/en-us/dotnet/api/microsoft.aspnetcore.authentication.google).
For Micorosft I have a couple of options, though:
- Microsoft.AspNetCore.Authentication.AzureAD
- Microsoft.AspNetCore.Authentication.MicrosoftAccount
- Microsoft.AspNetCore.Authentication.OpenIdConnect
I was first using Microsoft.AspNetCore.Authentication.AzureAD. Then I switched to Microsoft.AspNetCore.Authentication.MicrosoftAccount. I was assuming that this would not have much impact but it turned out that now all name-identifiers of my users have changed. So, appearantly there are differences.
I find it not very clear what the pros and cons of the different options are. Can someone help me make a good choice?
Upvotes: 3
Views: 4304
Answers (1)
Reputation: 1841
Microsoft.AspNetCore.Authentication.MicrosoftAccount
This namespace contains types that enable support for Microsoft Account OAuth based authentication. It Enables users to sign in with their existing credentials:
1)Is convenient for the users.
2)Shifts many of the complexities of managing the sign-in process onto a third party.
For more details refer this document
Microsoft.AspNetCore.Authentication.OpenIdConnect
This namespace contains types that enable support for OpenIdConnect based authentication.And OpenID Connect is an identity layer on top of the OAuth 2.0 protocol. It allows clients to request and receive information about authenticated sessions and end-users.
If you need to add authentication to an application and you want to use a third party as the authentication provider, then the recommended way to achieve this is using OpenId Connect.
Like Google or Facebook, OneLogin is also an OpenId Connect provider, which means that if you use OneLogin to store and manage the identities of your users, you can also use OneLogin to authenticate those users on your custom built apps.
For more details refer this document
Microsoft.AspNetCore.Authentication.AzureAD
The libraries Microsoft.AspNetCore.Authentication.AzureAD packages. As Per the document, since ASP.NET core 5.0, users should use the Microsoft.Identity.Web package to integrate with Azure AD and Azure ADB2C.
To migrate from Microsoft.AspNetCore.Authentication.AzureAD to Microsoft.Identity.Web refer this document
Upvotes: 3
Related Questions
- .NET Core Identity Server 4 Authentication VS Identity Authentication
- ASP.NET Identity vs ASP.NET Identity Core: Differences and Usage with Identity Server, etc.?
- Alternative Asp.NET Core Authentication Framework
- Pure ASP.NET Core Identity Server
- .Net Core Identity and Azure AD Authentication
- .NET Core Identity vs IdentityServer4
- Azure Active Directory for authentication and ASP.NET Core Identity for authorization
- Microsoft.AspNetCore vs Microsoft.IdentityModel (ADAL) with .net core API in Azure AD
- Microsoft Authentication in ASP.NET Core 2 and Azure App Services
- Which is the best scenario for use IdentityServer?