IdentityServer / IdentityServer2

[deprecated] Thinktecture IdentityServer is a light-weight security token service built with .NET 4.5, MVC 4, Web API and WCF.
Other
409 stars 291 forks source link

Need suggestion #793

Closed asanjeevak closed 10 years ago

asanjeevak commented 10 years ago

We have a scenario:

We have 3 Relying Parties registered with IDServer and all three only publish RESTful (WebAPI) Services A third Party Client Should first get authenticated on the SSO for a token and then use the token to access any of the services from any of the three relying parties

We were contemplating to use OAuth2 Client Credential Flow to achieve this. We were able to find a video on Authorization Server that depicts the above scenario, however, it would be great if you can give any direction or point us to samples with Identity Server V2.

brockallen commented 10 years ago

We don't support client credentials flow in IdentityServer v2. Also, in IdentityServer v2 we don't really allow a single token to be trusted by 3 different RPs -- in other words the client would need to get a new token for each RP.

asanjeevak commented 10 years ago

Thanks for your reply. Can you suggest us with Identity Server v2, what would be best fit that works for our scenario?

brockallen commented 10 years ago

I told you -- from the client make 3 different calls to IdSvr to get the 3 different tokens. You can then cache those tokens for the duration of the tokens.

asanjeevak commented 10 years ago

Thanks for your suggestion, we are going with resourceownerflow and oauth client and we are getting single token for individual relying party.