Shulou(Shulou.com)06/01 Report--

This article will explain in detail how the theoretical analysis of IdentityServer4 is, and the content of the article is of high quality, so the editor will share it with you for reference. I hope you will have a certain understanding of the relevant knowledge after reading this article.

I. introduction to IdentityServer4

IdentityServer4 is the OpenID Connect and OAuth 2.0 framework of ASP.NET Core 2. The functions that can be done are SSO (single sign-on), Api control, identity authentication service and so on. It is an open source project, and the most important thing is that IdentityServer can be customized to suit your solution! It's very friendly. Why to have it, in today's miscellaneous framework and language, it is very difficult to match a perfect set of applications, each module is very difficult to unify, so IdentityServer4 brings us candy.

two。 General content

Unified authentication single sign-on, Api authentication, authorization service, support of EntityFramework configuration, login and logout based on IdentityServer4.

three。 Why use it?

Most applications are shown above, basically making requests to API through the client (browsers, Web programs, native applications), and so on. When your project reaches a certain scope and size, it is possible to use Nginx, at this time, you must also consider the security of the site, because your core business can not trust any external calls. Of course, there are times when we have our own set of API to use for our own services, and we don't want others to call ours.

If we used IdentityServer4 to protect our API, the project hierarchy would be like this.

For example, a function of the blog park, if you do not log in, you can only visit the public part of the blog park, if you log in, you can fly freely, of course, this chestnut is not very appropriate. No, no, no.

four。 Concept

OpenID: it's the same as our ID card. You need identity for everything. If XXX wants to know if you have a problem, you have to check if there is something wrong with your ID. If there is something wrong with you, go away, yell if there is nothing wrong with you.

OAuth 2.0: the OAUTH protocol provides a secure, open, and simple standard for authorization of user resources. Different from the previous authorization methods, the authorization of OAUTH does not allow a third party to access the user's account information (such as user name and password), that is, a third party can apply for authorization of the user's resources without using the user's user name and password, so OAUTH is secure.

OpenId Connect: emmm, for example, your website connects to the third-party login of QQ, which is called identity layer by most programmers, and this general protocol is called OIDC. OpenID is Authentication, or authentication, which authenticates the identity of a user to determine whether his identity is valid, that is, to let the website know that "you are the user you claim to be".

On how the theoretical analysis of IdentityServer4 is shared here, I hope the above content can be of some help to you, can learn more knowledge. If you think the article is good, you can share it for more people to see.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.