Skip to content
Duende Software Docs
Still using open source IdentityServer4? Upgrading may be easier than you think. Get a FREE assessment

IdentityServer Admin UI

Duende IdentityServer is an OAuth 2.0 and OpenID Connect protocol engine and framework, and does not include any UI beyond what is available in the project templates. These contain UI for the login and consent pages, among others, but do not currently include an administrative UI as part of the product.

In this section, we will cover a couple of approaches to configure and administer Duende IdentityServer.

In-Memory vs. Database Configuration

Section titled “In-Memory vs. Database Configuration”

Configuration data in Duende IdentityServer is stored in a configuration store.

IdentityServer supports in-memory configuration, where clients, resources, scopes, and other configuration options are stored in memory. This approach is valuable, as configuration can be maintained and linked from a specific commit in source control, and deployed as a single unit with IdentityServer.

The downside of this approach is that to change configuration, the application will have to be restarted or redeployed. To allow for dynamic configuration changes, you can store configuration in a database.

Build Your Own Admin UI

Section titled “Build Your Own Admin UI”

When using a database-backed configuration store, you can use one of several general-purpose solutions. It is worth considering building your own solution, though.

A configuration and administration UI allows you to configure your production system manually. You may want to consider reducing the number of available options in this UI, to prevent accidental configuration errors. For example, you may want to limit the options to only those that are relevant to your production environment, and not support editing all the various protocol, client, and resource options. A limited subset of the available options may be enough.

Third-Party IdentityServer Admin UI

Section titled “Third-Party IdentityServer Admin UI”

A number of third-party projects and products have created IdentityServer Admin UIs. These are general-purpose and offer access to the Duende IdentityServer configuration data in a forms-over-data style.

ProjectDescription
Duende.IdentityServer.AdminASP.NET Core Admin UI for Duende IdentityServer by Jan Škoruba
Aguafrommars TheIdServerOpenID/Connect, OAuth2, WS-Federation and SAML 2.0 server based on Duende IdentityServer and ITFoxtec Identity SAML 2.0 with its admin UI by Olivier Lefebvre
RockSolidKnowledge AdminUIUI and APIs for managing your Duende IdentityServer