We have an ASP.NET Zero application, and then a separate web application that already performs user authentication. We would like for users logged in our external application to be able to click on a link that then takes them to the ASP.NET Zero application as that same user.
- Is it possible to create an authorization token from that application, then to redirect the user to the ASP.NET Zero web site and have the user use that token?
- Or is it possible for us to create our own IExternalAuthProviderApi implementation where we can do something like this?
- Some other option?
Note: I investigated using OpenID and WSFederation in our external application, but I don't believe they would work because our external application itself can be configured to have it's identity provided by various SSO systems.
3 Answer(s)
-
0
Hi @jsklare
Does your non-AspNet Zero application supports Identity Server ?
-
0
Unfortunately, at the moment it is built on .NET Framework and WebForms, so we can't use IdentityServer4. IdentityServer3 would have been a possibility, but it's gone out of support and therefore isn't an option.
-
0
You can create a token similar to https://github.com/aspnetzero/aspnet-zero-core/blob/dev/aspnet-core/src/MyCompanyName.AbpZeroTemplate.Web.Core/Controllers/TokenAuthController.cs#L600 but it will require an existing user on AspNet Zero's database.
Or, you can try to create an ExternalAuthenticationSource, see https://aspnetboilerplate.com/Pages/Documents/Zero/User-Management?searchKey=External%20Authentication#external-authentication
