Does this library support code flow and JWT based authentication instead of client secret?

[amitt0488]

Can we send signed request through this library?

[Tratcher]

Are you talking about the OpenIdConnect provider? It requires a client secret for doing code redemption. However, you can hook into the AuthorizationCodeReceived notification and redeem the code yourself. https://github.com/aspnet/AspNetKatana/blob/fae38fae683bb0977bcaf7c3ffce244aced82135/src/Microsoft.Owin.Security.OpenIdConnect/OpenIdConnectAuthenticationNotifications.cs#L38

[ghost]

This issue has been resolved and has not had any activity for 1 day. It will be closed for housekeeping purposes.

See our Issue Management Policies for more information.