brockallen
commented
10 years ago The signing cert needs to be in "trusted people" in the machine certificate store, assuming you're doing JWT with RSA as indicated above.
Closed verts closed 10 years ago
brockallen
commented
10 years ago The signing cert needs to be in "trusted people" in the machine certificate store, assuming you're doing JWT with RSA as indicated above.
verts
commented
10 years ago Doh, only had it in Trusted Root Certification Authorities and not trusted people. Seems to work now, thanks!
Been trying to set up Authorization server with identity server as the identity provider, following the vimeo videos.
Identity server is set up and running successfully but when I try to hook Authorization server up it errors out; whenever I press the 'Configure Server' button and log into Identity server I am getting the following error:
I tried to edit the identityModel.config according to this past issue that was posted (https://github.com/thinktecture/Thinktecture.AuthorizationServer/issues/198), adding the Signing Thumbprint from identity server to the issuerNameRegistry/Authority/Keys but still no luck with that, it still cannot find a certificate.
I am quite new to anything to do with security/web apis (just having gone thru Dominick's pluralsight courses) so I have a feeling i'm missing some fairly simple setting (getting the Authorization server to actually find the cert). This cert is the same one I use for the signing/decrypt cert in Identity server and the Encrypting Certificate Thumbprint in the authorization relying party.
For reference the authority server RP looks like this in Identity Server (cert thumbprint hidden)
My identityModel.config looks like this (hiding cert thumbprint again)
Any help or a pointer to other documentation to help me get started with authorization server would be much appreciated!