Thinktecture Identity server vs Authorization server

thinktecture-ident-server
Nikola Yankov picture Nikola Yankov · Jan 18, 2014 · Viewed 9.1k times · Source

I am researching on this topic last weeks and unfortunately I can't figure out. I understand the difference between authentication and authorization.

I will appreciate any guidance on the topic.

What I need as general is to implement single sign on for several web sites which are driven with apis which also should handle authentication. The users should be able to register/login with username/pass or respectively through any third party service like facebook, google+, twitter etc.

In the scenario above what is the better approach? Should I use only identity server, or only authorization server or both?

Thank you in advance.

Answer

leastprivilege picture leastprivilege · Jan 20, 2014

Start with IdentityServer - this is your identity management system.

AuthorizationServer in addition is a full featured OAuth2 implementation that can use IdentityServer as a user store.

http://leastprivilege.com/2013/06/16/relationship-between-identityserver-and-authorizationserver/

Related questions

Identity Server 4: adding claims to access token

I am using Identity Server 4 and Implicit Flow and want to add some claims to the access token, the new claims or attributes are "tenantId" and "langId". I have added langId as one of my scopes as below and then …

Read More
IdentityServer Flows

IdentityServer supports different OpenId Connect flows that are defined in the Flows enum and set for clients. There's also samples for each type of flow and many references to them in the docs but I could not find a simple …

Read More
Add a claim to JWT as an array?

Using thinktecture JWT authentication resource owner flow,i use the claims part of JWT for client consumption. My question is that if its possible to add claim in identity server and decode it as an array in client. There is …

Read More