We have an existing Asp.Net Webforms application with Forms based authentication. Now, we need to integrate OAuth providers(Google,FB,LinkedIn) for authenticating users. Can we use Owin security providers without disabling forms based authentication in Webforms application?
All articles on internet suggest to use owin cookie based authentication by disabling FBA modules. It will be a major work for us if need to remove FBA module for this at this time. Is there a way we could still use forms authentication and use the owin security providers only for OAuth?
Note:
We are aware about DotNetOpenAuth providers and it can satisfy our needs. But wanted to check if we can use owin security providers with forms authentication.
Thanks in advance!
Regards,
Bala
Related
We're in the process of migrating our authentication and authorization logic away from the original membership providers. We are currently looking at Asp.net Identity, but no one on the team has experience with this technology. We've been asked to support ADFS in the future and looking to see if this framework directly supports ADFS, which no one on the team has experience with either.
The only article I've found, http://www.cloudidentity.com/blog/2014/02/12/use-the-on-premises-organizational-authentication-option-adfs-with-asp-net-in-visual-studio-2013/ seems to imply asp.net identity will support ADFS as a provider. Are there any other definitive resources for asp.net identity and ADFS?
Regards,
Noobian
ASP.NET Identity offers an "easy" way to add users and authenticate against them in a SQL DB.
ADFS can only authenticate against AD.
WIF is still supported but older - the OWIN WS-Fed libraries are the way to go these days.
If you want to use ASP.NET Identity have a look at thinktecture's IdentityServer. Offers full support for this plus you can federate with ADFS.
I have started to create ASP.NET membership for learning basis but i found new ASP.NET Identity. Some people suggested that latter is advanced than ASP.NET membership and ASP.NET simple membership.
I have read the comparison from this source. But still i have some questions because i some things are still unclear to me.
Can i use owin and oauth with ASP.NET membership and simple membership?
how i can authenticate web api with ASP.NET membership and simple membership?
Can i customize tables for profile, user and role in ASP.NET Identity?
Please suggest. If any one can suggest me a good reference for authorization and authentication of web API and ASP.NET Identity configuration, it would be great.
ASP.NET Identity is now a mature technology and it's complex enough to accommodate all your requirements.
More than so, there is even a better solution, it's called ASP.NET Identity Server and comes with couple things extra:
Can be used with Identity
Implements SSO (Single Sign-On)
Can be used with Entity Framework
It's a self host product
So to answer you're questions:
No, you cannot use both Identity and Simple Membership.
Using ASP.NET Identity Server, via a token.
You can customize the tables to meet you requirements.
Here is the official documentation for the Identity Server.
I am trying to tie my ASP .NET IDENTITY to a Membership Provider.
ASP .NET Identity requires the authentication module removed in web .config, and the authentication mode set to none.
Does Membership Provider (boxed, or custom) require any of the two to work?
You have to use Forms for forms authentication.
I have an ASP.NET project that has a forms authentication provider which works great. Is there a way to make a second project use the same forms authentication provider?
I'm not familiar with ASP.NET authentication so any reference to what I'm trying to do and why it can or can't be done would be great!
Need to develop a Web application that will be used to authenticate and authorize internal and external users to log and then re-route to web applications for the organization. The login application should be able to provider smooth integration with any future applications that needs a secured authentication.
Should I be using WIF - Claims based Identity/ADFS or asp.net Role membership provider to develop this app.? Or is there any other approach which will help achieve this?
I've been working on an asp.net site with WIF for several months now. I like that WIF is very flexible, but the documentation is poor. Check out the discussions on SO about WIF.