search

DuendeSoftware / IdentityServer

The most flexible and standards-compliant OpenID Connect and OAuth 2.x framework for ASP.NET Core
https://duendesoftware.com/products/identityserver
Other
1.47k stars 344 forks source link

Implement "Pair-wise subject IDs" #33

Open leastprivilege opened 3 years ago

leastprivilege commented 3 years ago

migrated from IdentityServer4

https://github.com/IdentityServer/IdentityServer4/issues/1557

brockallen commented 3 years ago

Since we will have some (minor) schema changes in v6, maybe we can use that to add the necessary DB changes here? We'd need an entropy column, and a flag for this I guess (at least).

leastprivilege commented 3 years ago

We already have an entropy column...

But we came to the conclusion that this would also require a pair-wise session ID...