asp.net mvc - Decoupling Authorization Server & Resource SErver using OWIN Middleware and Web API/MVC -



asp.net mvc - Decoupling Authorization Server & Resource SErver using OWIN Middleware and Web API/MVC -

the below process have followed while implementing single sign on

decoupled authorization server & resource server got access-token using client_credentials authorization server

problem:

i have used mvc 4 application resource server , can't able access views(resource) resource server using mvc controllers authorize attribute

used access-token generated authorization server

also read below question:

"i have un-secured mvc 5/web api 2 application. accesses resources using combination of mvc controllers, , ajax calls web api endpoints.

eventually move resource access separate resource server. however, time being, application production proof of concept line of business applications secured using oauth 2 framework.

i have configured users in identityserver, , added application authorizationserver using code flow client. based on sample provided code, able retrieve access token in application, add together request headers web api endpoint calls secured scope attribute.

my questions how can utilize same flow secure mvc controllers? imagine entail setting owin middleware component set authorization headers each request based on cookie contains token. on right path, or should go in different direction this?"

please allow me know how access mvc resource using owin middleware instead of web api.

asp.net-mvc asp.net-mvc-4 asp.net-web-api owin

Comments

Popular posts from this blog

assembly - What is the addressing mode for ld, add, and rjmp instructions? -

vowpalwabbit - Interpreting Vowpal Wabbit results: Why are some lines appended by "h"? -

Is there a way to convert an HTML page styled with Bootstrap CSS into email-compatible html? -