What is AuthServer?
An IdentityProvider implementing the core OAuth 2.1 specification, with the
OpenId Connect specification on top.
The only thing AuthServer does not have is UI and user persistance, it is recommended
to use AspNetCore.Identity for that.
Everything else has already been made to make auth(orization) and auth(entication)
easy.
AuthServer has been designed to be distributed with caching, configurable without
sacrificing security and implements strict security by default, so that recommendations
become requirements.
What does it do for you?
Choose typed JWT with signatures and optionally encryption and sender constraints. Or use Opaque tokens with Introspection.
Setup clients dynamically using Dynamic Client Registration or have them statically defined.
AuthServer uses EF Core for persistance and uses distributed caching for fast retrieval of common entities without stale entries.
Designed to be a distributed application with multiple instances, enabling scalability for your specific needs.
Easily setup your custom AuthServer using depdency injection in your AspNet Core application.
Usage of claims in userinfo and id tokens. Identifies users by subject identifiers of type public and pairwise.
Identify endpoints and supported features through the discovery endpoint, and identify signature and encryption keys through the Jwks endpoint.
Observe usage of your application through metrics, traces and logs.
Implements OAuth 2.1 and OpenId Connect.