-
Notifications
You must be signed in to change notification settings - Fork 408
Home
Jean-Marc Prieur edited this page Nov 4, 2021
·
28 revisions
This repository, Identity Model Extensions contains the source code for 12 NuGet packages:
NuGet package | Description | Reference doc |
---|---|---|
Microsoft.IdentityModel.Logging | Includes Event Source based logging support | api |
Microsoft.IdentityModel.Protocols | Provides base protocol support for OpenIdConnect and WsFederation. | api |
Microsoft.IdentityModel.Protocols.OpenIdConnect | Includes types that provide support for OpenIdConnect protocol | api |
Microsoft.IdentityModel.Protocols.WsFederation | Includes types that provide support for WsFederation protocol. | api |
Microsoft.IdentityModel.Tokens | Includes types that provide support for SecurityTokens, Cryptographic operations: Signing, Verifying Signatures, Encryption. | api |
Microsoft.IdentityModel.Tokens.Saml | Includes types that provide support for SamlTokens version 1 and 2. | api |
Microsoft.IdentityModel.Xml | Includes types that provide support for Reading / Writing XML with Enveloped Signatures. | api |
System.IdentityModel.Tokens.Jwt | Includes types that provide support for creating, serializing and validating JSON Web Tokens. | api |
Microsoft.IdentityModel.JsonWebTokens | Includes types that provide support for creating, serializing and validating JSON Web Tokens. This is a newer, faster version of System.IdentityModel.Tokens.Jwt that has additional functionality. | |
Microsoft.IdentityModel.KeyVaultExtensions | Includes types that provide support for signing and encrypting tokens with Azure Key Vault. | |
Microsoft.IdentityModel.ManagedKeyVaultSecurityKey | Includes types that provide support for signing and encrypting tokens with Azure Key Vault for applications that are using Managed identities for Azure resources. | |
Microsoft.IdentityModel.Protocols.SignedHttpRequest | Includes types that provide support for SignedHttpRequest (PoP) protocol. | |
Microsoft.IdentityModel.Validators | Includes types that helper methods for token specialized validation (for instance AAD issuer validation). |
Sample | Illustrates | Description |
---|---|---|
active-directory-dotnet-webapi-manual-jwt-validation | System.IdentityModel.Tokens.Jwt | A .NET 4.5 WPF application that authenticates a user and calls web API using Azure AD and OAuth 2.0 access tokens. The Web API manually processes the JWT access token using the JSON Web Token Handler. |
Conceptual Documentation
- Using TokenValidationParameters.ValidateIssuerSigningKey
- Scenarios
- Validating tokens
- Outbound policy claim type mapping
- How ASP.NET Core uses Microsoft.IdentityModel extensions for .NET
- Using a custom CryptoProvider
- SignedHttpRequest aka PoP (Proof-of-Possession)
- Creating and Validating JWEs (Json Web Encryptions)
- Caching in Microsoft.IdentityModel
- Resiliency on metadata refresh
- Use KeyVault extensions
- Signing key roll over