Rock Man

Welcome to the blog of identityserver.com hosted by Rock Solid Knowledge, the IdentityServer European Partners, offering commercial support, consultancy and training for IdentityServer 3 & 4, and all things authentication, backed by the creators of IdentityServer themselves.

FIDO2: The End of Passwords is Near

Thursday, 27 September, 2018

FIDO2: The End of Passwords is Near

There have been bold claims of killing passwords off for years; however, recently there’s been a lot of buzz about a potentially viable solution: FIDO2. After hearing a lot about all things FIDO and WebAuthn at the European Identity & Cloud Conference, and Identiverse, I decided to take a look into the new standards and how they could be applied to IdentityServer4.…

More

AdminUI 2.2 Release Notes

Tuesday, 11 September, 2018

AdminUI 2.2 Release Notes

Rock Solid Knowledge is pleased to announce the release of AdminUI 2.2. In this release, we’ve not only added support for new languages, redesigned the landing page, and addressed a number of bugs, we’ve also improved the way we handle user authorization within AdminUI...…

More

Extending the AdminUI Schema

Wednesday, 22 August, 2018

Extending the AdminUI Schema

Our IdentityServer4 administration tool, AdminUI, uses a custom ASP.NET Core Identity schema that extends the default user entities such as `IdentityUser` and `IdentityRole`. This allows existing IdentityServer solutions to initially continue using these base entities while still taking advantage of AdminUI’s user administration features...…

More

SAML 2.0 Integration with IdentityServer4

Thursday, 16 August, 2018

SAML 2.0 Integration with IdentityServer4

The Security Assertion Markup Language (SAML) is a protocol used to communicate authentication data between two parties, favored by educational and governmental institutions. If you’re implementing IdentityServer 4 and in the world of OpenID Connect, then I guess you could safely call it a “legacy” protocol.…

More

An Introduction to the OAuth Device Flow

Tuesday, 27 March, 2018

An Introduction to the OAuth Device Flow

One of the last few legitimate usages of the Resource Owner Password Credentials (ROPC) grant type is for browserless devices, for example, a smart TV and other such Internet of Things (IoT) devices. To address the issue of such devices, the OAuth working group are in the stages of finalizing a new specification called “OAuth Device Flow for Browserless and Input Constrained Devices.”…

More