Umbraco authentication based on OpenID Connect/ OAuth2 protocols
I would like to configure Umbraco to use claims based authentication using OpenID connect protocols.
I have an Identity Provider (Identity Server 3) that implements single sign for the front-ends on some of our non-content driven web sites and I'm looking to introduce the same access control to our umbraco sites.
The closest I've seen to a solution is Shannon's https://github.com/Shazwazza/UmbracoIdentity package. However, I can't see how that works with my scenario where I have an external Identity Provider handling all member login and issuance of claims that can then be mapped to Umbraco roles to determine if a member is authorized to view a page.
Thanks. I had already taken a look at that article but it doesn't cover my use case.
I can see how Umbraco might be able to use Id Server to authenticate Back Office users using Umbraco's Account Link.
I'm interested in authenticating front end members using an external single sign on site, using claims issued there for a relying party, in this case a front end driven by Umbraco cms, to use for authorizing page access.
Haven't used Identity server my self. What I have done is using ASP.NET Identity with a custom user store for member logins. Most of my code is ripped from the UmbracoIdentity project
Seems like you might be able use the SkyBrud umbraco package as a pattern for implementation, they connect with a bunch of external places for authentication.
Yes, but you need to create code that after login with normal Umbraco login, the user must be able to connect its External Identity token and the code to match tokens when login with external provider.
Hello, I am looking for a solution to the same issue. Please let me know if you find one.
For the Umbraco admins. This is not a very rare situation. Our organization setup single sign on a while back and would like to setup Umbraco using our OpenID login solution. We are using IdentityServer 4.
I too am looking for a similar solution, using Azure Active Directory as the STS providing an ID token that can be used to call APIs from JavaScript components on an Umbraco page.
I am able to return authentication code from my identity server, but i dont know how to use that further. i just land back on login page since i am not sure how to consume the token and authenticate the user
Umbraco authentication based on OpenID Connect/ OAuth2 protocols
I would like to configure Umbraco to use claims based authentication using OpenID connect protocols.
I have an Identity Provider (Identity Server 3) that implements single sign for the front-ends on some of our non-content driven web sites and I'm looking to introduce the same access control to our umbraco sites.
The closest I've seen to a solution is Shannon's https://github.com/Shazwazza/UmbracoIdentity package. However, I can't see how that works with my scenario where I have an external Identity Provider handling all member login and issuance of claims that can then be mapped to Umbraco roles to determine if a member is authorized to view a page.
Hi Leo,
Maybe this article can get you started : https://www.werkenbijvxcompany.nl/login-to-umbraco-backoffice-using-identityserver4/
Dave
Hi Dave,
Thanks. I had already taken a look at that article but it doesn't cover my use case.
I can see how Umbraco might be able to use Id Server to authenticate Back Office users using Umbraco's Account Link.
I'm interested in authenticating front end members using an external single sign on site, using claims issued there for a relying party, in this case a front end driven by Umbraco cms, to use for authorizing page access.
Hi Leo,
Haven't used Identity server my self. What I have done is using ASP.NET Identity with a custom user store for member logins. Most of my code is ripped from the UmbracoIdentity project
Dave
I'm interested in authenticating front end members using an external single sign on site +1
Additional :
my task required to use OAuth2 to get the Token & Authorization Code.
Anybody got sample how to do this in Umbraco ?
Thanks
Seems like you might be able use the SkyBrud umbraco package as a pattern for implementation, they connect with a bunch of external places for authentication.
Yes, but you need to create code that after login with normal Umbraco login, the user must be able to connect its External Identity token and the code to match tokens when login with external provider.
Hello, I am looking for a solution to the same issue. Please let me know if you find one.
For the Umbraco admins. This is not a very rare situation. Our organization setup single sign on a while back and would like to setup Umbraco using our OpenID login solution. We are using IdentityServer 4.
Thank you.
Another option might be to look through the AuthU package; we use that with JWT for our mobile apps.
There is also this project that might be of help for backend authentication. https://github.com/Offroadcode/Umbraco-2FA
Hi Leo,
I know this post is over a year old but did you ever find a solution?
Cheers,
Tom.
I too am looking for a similar solution, using Azure Active Directory as the STS providing an ID token that can be used to call APIs from JavaScript components on an Umbraco page.
Its February 2020 and i could not find a proper solution. I was following the below article, yet it doesnt seems to work for me. https://yuriburger.net/2017/04/26/login-to-umbraco-backoffice-using-identityserver4/
I am able to return authentication code from my identity server, but i dont know how to use that further. i just land back on login page since i am not sure how to consume the token and authenticate the user
I think you need to configure the middleware for the Identity startup? Does this link help for Umbraco 7?
https://this.isfluent.com/blog/2019/two-factor-authentication-for-umbraco-part-2
Thank you Mitchell! I did not see this article before. This looks promising. I will see how I can do the same for an existing application.
Hi Leo,
Since Umbraco 9.3 there is support for external login providers with OpenID Connect: https://our.umbraco.com/documentation/reference/security/external-login-providers/
I've released a package which demos how Umbraco can be used with OpenID Connect: https://www.jeroenbreuer.nl/blog/released-umbraco-openid-connect-example-package/
Jeroen
is working on a reply...