I have searched for IdentityServer and watched a lot of presentation of them. But, this is very good presentation for IdentityServer that I have seen. Thank you very much.
Glad it was helpful! These videos on adding a User Interface to IdentityServer might be useful: ruclips.net/video/QL_gajP8hvM/видео.html and ruclips.net/video/VVHaVg0jfgw/видео.html.
Thanks Thomas great video, but I guess it does not make sense to set ValidateIssuerSigningKey = true for Api DP configuration, as typical for this validation scenario you provided, the jwtbearer middleware automatically fetches the signing keys from the IdentityServer's JWKS endpoint based on the provided Authority and the kid (Key Id) from the access token header is used to select the appropriate key from the JWKS for signature verification.
@@tnc1997 buddy, I have not finished the whole video, but by anychance do you happen to know how to implement Refresh Token full life cycle? I mean, how the flow has to be coded in order to use refresh token after Access Token has expired?.
It depends on the client application that you're creating because most libraries automatically handle access token refresh using the offline_access scope and refresh tokens.
I just have a question about authority and audience in API project, I checked your github example but nothing exists! 404 unauthorized error occurs@@tnc1997
I solved the issue about 404, and now, I can login. But another important problem occurs, I just copied and pasted your code, but again has happened. It show me an error about : Bearer error="invalid_token",error_description="The signature key was not found" . When I set issuer to false, then an error for key will happen. I checked db and can see many key record in Keys table, It's ok and has data for it. Please help me with this @@tnc1997
It's a great course I've ever seen!! Thank you very much!!! Can you make video with Windows authentification with IdentityServer6? It can help with integration with users from win.....
@@tnc1997 Thank you for the video, it was very informational. I loved it. One enhancement suggestion is adding a photo for a profile picture for a user. Something like uploading the photo to the server and then having a uri that can be displayed on a front end. Thanks!
How would I do it, if I have two projects one with identity and another one with IdentityService? I mean, should I duplicate my class for ApplicationUser? And how would I make this migration using sql server? Do you have any example of it? However, it is a nice video!
Thank you very much! You could put the ApplicationUser class into a shared class library project that is referenced by both of the other projects. Migrations can be added for SQL Server using the specific provider: learn.microsoft.com/en-us/ef/core/providers/sql-server.
I am trying to use identityserver as web api at the same time in order to implement some additional models in IdentityServer... When I use access_token to authenticate the same identity service, it is redirecting me to login page as response not JSON response... From Clients I can get response normally but from Web Page it alwys redirect to login page. Can we use it in this way ?
It sounds like you're adding an API to the IdentityServer application itself. More information can be found here: docs.duendesoftware.com/identityserver/v6/apis/add_apis.
Error - Invalid URI: The format of the URI could not be determined. In Api/Program.cs line 49 - TokenUrl = new Uri($"{builder.Configuration["Authentication:Authority"]}/connect/token") It's like the jwtBearerOptions didn't save it correctly? In Api/Program.cs line 9 - jwtBearerOptions.Authority = builder.Configuration["Authentication:Authority"]; Duende's own documents suggest using - jwtBearerOptions.Authority = "localhost:5001"; Any help appreciated! Very good tutorial otherwise. I'm not using docker, just running locally. Docker compose was a nightmare.
![I.N "HALLUCINATION" | [Stray Kids : SKZ-PLAYER]](http://i.ytimg.com/vi/n5B5q1Hwt_U/mqdefault.jpg)
I have searched for IdentityServer and watched a lot of presentation of them. But, this is very good presentation for IdentityServer that I have seen. Thank you very much.
Thank you very much for your positive feedback!
I was looking for copper, but I found gold. 😄😄
Thank you so much for this video. Really useful.
Thank you very much for your positive feedback!
Thanks for taking the time and effort to set this up. Much appreciated! Keep up the fantastic work! 👏😎
Thank you very much!
Thank you for the video !!!! Thanks for taking the time and effort to set this up
You're welcome!
this is reallllllllly good man, Thanks very much. Also, I would like an episode on adding UI to IdentityServer.
Glad it was helpful! These videos on adding a User Interface to IdentityServer might be useful: ruclips.net/video/QL_gajP8hvM/видео.html and ruclips.net/video/VVHaVg0jfgw/видео.html.
Thanks Thomas great video, but I guess it does not make sense to set ValidateIssuerSigningKey = true for Api DP configuration, as typical for this validation scenario you provided, the jwtbearer middleware automatically fetches the signing keys from the IdentityServer's JWKS endpoint based on the provided Authority and the kid (Key Id) from the access token header is used to select the appropriate key from the JWKS for signature verification.
Thank you very much for your positive feedback, upon reviewing the documentation that appears to be the case.
Hey Thomas! Thank you fro your great video
Doubt: does this walkthrough implements OAuth 2.0 and OpenID? regards!
Thank you very much! This video covers both OAuth 2.0 and OpenID Connect.
OpenID Connect is an extension of the OAuth 2.0 specification.
@@tnc1997 you're so kind!! Thank you heaps for your reply. I'm watching the whole video
This seems to come handy for my current work :)
@@tnc1997 buddy, I have not finished the whole video, but by anychance do you happen to know how to implement Refresh Token full life cycle? I mean, how the flow has to be coded in order to use refresh token after Access Token has expired?.
It depends on the client application that you're creating because most libraries automatically handle access token refresh using the offline_access scope and refresh tokens.
In 1:33:42, I insert the fields but an error happens: "auth errorTypeError: NetworkError when attempting to fetch resource."
Hi @ali-de3my, are there any additional details and/or messages logged in the browser console?
I just have a question about authority and audience in API project, I checked your github example but nothing exists! 404 unauthorized error occurs@@tnc1997
Could you confirm if you're experiencing a 404 not found or a 401 unauthorized?
I solved the issue about 404, and now, I can login. But another important problem occurs, I just copied and pasted your code, but again has happened. It show me an error about : Bearer error="invalid_token",error_description="The signature key was not found" . When I set issuer to false, then an error for key will happen. I checked db and can see many key record in Keys table, It's ok and has data for it. Please help me with this @@tnc1997
Very well explained. thank you :)
Glad it was helpful!
👍👍👍 So valuable
Glad it was helpful!
this saved my life.. thank you so much:)
You're welcome!
It's a great course I've ever seen!! Thank you very much!!! Can you make video with Windows authentification with IdentityServer6? It can help with integration with users from win.....
Thank you very much for your feedback, I'll consider a video covering that in the future!
This is a very lovely tutorial, very clear and concise. Do you have any other courses available? I wouldn't mind paying for them.
Thank you very much! I only have what's available on GitHub/RUclips currently, but I am open to suggestions and to helping out where I can.
@@tnc1997 Thank you for the video, it was very informational. I loved it. One enhancement suggestion is adding a photo for a profile picture for a user. Something like uploading the photo to the server and then having a uri that can be displayed on a front end. Thanks!
@@nicholasferrara8028 thank you very much for your positive feedback!
How would I do it, if I have two projects one with identity and another one with IdentityService? I mean, should I duplicate my class for ApplicationUser? And how would I make this migration using sql server? Do you have any example of it? However, it is a nice video!
Thank you very much! You could put the ApplicationUser class into a shared class library project that is referenced by both of the other projects. Migrations can be added for SQL Server using the specific provider: learn.microsoft.com/en-us/ef/core/providers/sql-server.
@@tnc1997 Hi Thomas, I could make it work locally! I split the identity and the Identity Server. Thanks! Now having issues publishing on azure haha...
No problem, you're welcome!
I am trying to use identityserver as web api at the same time in order to implement some additional models in IdentityServer... When I use access_token to authenticate the same identity service, it is redirecting me to login page as response not JSON response... From Clients I can get response normally but from Web Page it alwys redirect to login page.
Can we use it in this way ?
It sounds like you're adding an API to the IdentityServer application itself. More information can be found here: docs.duendesoftware.com/identityserver/v6/apis/add_apis.
Error - Invalid URI: The format of the URI could not be determined.
In Api/Program.cs line 49 - TokenUrl = new Uri($"{builder.Configuration["Authentication:Authority"]}/connect/token")
It's like the jwtBearerOptions didn't save it correctly?
In Api/Program.cs line 9 - jwtBearerOptions.Authority = builder.Configuration["Authentication:Authority"];
Duende's own documents suggest using - jwtBearerOptions.Authority = "localhost:5001";
Any help appreciated! Very good tutorial otherwise. I'm not using docker, just running locally. Docker compose was a nightmare.
I got it working. I had to add in a CORS allow policy in my identity server client. Detailed in my post above...
Glad that you were able to resolve the issue!