We believe in open-source software. It is really priceless. We love versatility. Ultimate customization. Organic development of the code.
The act of working with open-source software is really intimate because you can see the code naked. We found an attractive open-source project that we love. It makes SSO easy. And standard. And custom.
We love IdentityServer4. OpenID Connect & OAuth2 standard tokens for modern applications. SSO for everyone. Connect to any standard OIDC, OAuth2, SAML2 providers like Azure AD, Okta, Google, Facebook, etc. Be the Identity Provider.
IdentityServer4 is awesome and we want to give back to the community. We made a couple of projects on GitHub using .NET Core 3.1 that can help you with MFA flows. ASP.NET Core Identity integration, MSSQL or PostgreSQL. If you are looking for older examples and tutorials (.NET Core 2.1) you can find them here.
We wrote step-by-step tutorials to get you started from no project up to a production-ready Docker image.

01. IdentityServer4 Quickstart .NET Core 3.1

You can find the project here. Setup the project and run it in Visual Studio In order to make our lives a bit easier, the team responsible for IdentityServer4 created dotnet templates to quickstart various ID4 projects. We will start with a quickstart template (including basic UI) to get to know the basic parts of […]

02. IdentityServer4 EntityFramework .NET Core 3.1

You can find the project here. IdentityServer4 EntityFramework is the second post in my IdentityServer4 tutorial series. I highly recommend starting with IdentityServer4 Quickstart as it will make things much easier to follow. We will continue where we left of with the project created in the quickstart. You can find the quickstart project source code […]

03. IdentityServer4 EF With PostgreSQL .NET Core 3.1

You can find the project here. Remove existing MSSQL migrations If you followed my previous tutorial we were adding migrations for operational and configuration stores in MSSQL database. We will now say bye-bye to the MSSQL database and switch to PostgreSQL which is a really good open-source and free relational database engine. We will leave […]

04. PART 1 IdentityServer4 ASP.NET Core Identity .NET Core 3.1

You can find the project here. What is ASP.NET Core Identity The official explanation from Microsoft docs is: “ASP.NET Core Identity is a membership system that adds login functionality to ASP.NET Core apps. Users can create an account with the login information stored in Identity or they can use an external login provider.” and “Identity […]

04. PART 2 IdentityServer4 ASP.NET Core Identity .NET Core 3.1

You can find the project here. If you got up to this point I congratulate you for being persistent. Most of the “hard” steps are pretty much done. We just need to create database migrations for ASP.NET Core Identity to create the database tables. I will help you to understand new identity tables, similar as […]

04. PART 3 IdentityServer4 ASP.NET Core Identity .NET Core 3.1

You can find the project here. Test data In order to start playing with the IdentityServer4, later on, we must populate test config and user data into our database tables. Without it, we can’t start using the IdentityServer4. Changes are pretty straight forward and require adding the seed data in code and adding a setting […]

05. IdentityServer4 Adding custom properties to User .NET Core 3.1

You can find the project here. Custom User properties vs claims Initial user properties are set by ASP.NET Core Identity. These properties like “Username”, “Email”, “AccessFailedCount” etc are defined for each user. Claims could be used to add additional user information in tokens for a specified identity scope. But there are scenarios where adding claims […]

06. IdentityServer4 External Providers .NET Core 3.1

You can find the project here. Standard Protocols All Identity Providers are supported using standard protocols like OpenID Connect, OAuth2, SAML2 and WS-Federation. This could be Okta, it could be Auth0, could be proprietary IdP of a client, could be another IdentityServer4. Take a look at the list of out-of-the-box extensions for “AuthenticationBuilder” for big […]

07. IdentityServer4 MFA – TOTP .NET Core 3.1

You can find the project here. Why MFA Multi-factor authentication or MFA requires multiple factors to authenticate a user. Two-factor authentication (2FA) is an MFA with two factors. There is no real limit on how many factors we can add but it’s not practical for a user to use many factors as it hurts usability of […]

08. PART 1 IdentityServer4 MFA – FIDO2 (YubiKey 5) .NET Core 3.1

You can find the project here. Why FIDO2 Two words. Unphishable authentication. Let’s explain a bit more. Authentication can be intercepted in a reverse proxy scenario. To get a user in a reverse proxy scenario an attacker can send an email looking like a legitimate email from a service the user is frequently using. Let’s say […]

08. PART 2 IdentityServer4 MFA – FIDO2 (YubiKey 5) .NET Core 3.1

You can find the project here.   This is PART 2 of the IdentityServer4 MFA – FIDO2 (YubiKey 5). We will pick up where we left off in PART 1.   New pages and controllers We will need two pages and two controllers. Those two pages will use two JS scripts we added earlier for enrollment […]

If you have any questions suggestions or just want to say hello, contact us.
Thank you.