Click here to Skip to main content
15,613,873 members
Please Sign up or sign in to vote.
0.00/5 (No votes)
See more:
I am working on a app for variety of users(like Student,Teacher,Institute Admin etc),but now I brake the whole app into user specific web application and think to have to have one centralized login system .

My project contains a Web API project and other MVC web applications.For use management I use core Identity.

Previously I generate JWT for authenticated users from API and store in cookie .and pass the token in request header for each request,and [^]Use cookie authentication without ASP.NET Core Identity for web application for authentication purpose .

To add SSO functionality among application,I read [^]Share authentication cookies among ASP.NET apps and understand the mechanism.But I not able to figure how to share the JWT among other applications.

Please share valuable thoughts,or advice me a better approach .

What I have tried:

var claimsIdentity = new ClaimsIdentity(claims, CookieAuthenticationDefaults.AuthenticationScheme);

var authProperties = new AuthenticationProperties
//AllowRefresh = true,
//ExpiresUtc = DateTimeOffset.Now.AddDays(1),
//IsPersistent = true,
Response.Cookies.Append("access_token", access_token);
Response.Cookies.Append("refreshToken", refreshToken);
await HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme, new ClaimsPrincipal(claimsIdentity), authProperties);

Currently I use above code to store access_token in cookies,and HttpContext.SignInAsync to cookie authentication .
Mr.Duy09 1-Jul-21 5:29am    
Hey Bro!
I think you need "Identity Server 4".

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

CodeProject, 20 Bay Street, 11th Floor Toronto, Ontario, Canada M5J 2N8 +1 (416) 849-8900