Overview
The big Picture
Terminology
Supported Specifications
Packaging and Builds
Support and Issues
Demo Server
Fundamentals
Hosting
Resources
Identity Resources
API Scopes
API Resources
Resource Isolation
Clients
Users and Logging In
Claims
Key Management
License Key
Quickstarts
Overview
Protecting an API using Client Credentials
Interactive Applications with ASP.NET Core
ASP.NET Core and API access
Using EntityFramework Core for configuration and operational data
Using ASP.NET Core Identity
User Interaction
Login
Authentication Session
Redirecting back to the client
Login Context
Accepting Local Credentials
Integrating with External Providers
Windows Authentication
Logout
Logout Context
Ending the Session
Client Notifications
Returning to the Client
External Logout
External Logout Notification
Error
Consent
Custom Pages
Requesting Tokens
Overview
Requesting a Token
Refreshing a Token
Issuing Tokens based on User Passwords
Extension Grants
Token Exchange
Dynamic Request Validation and Customization
Issuing internal Tokens
Proof-of-Possession Access Tokens
Reference Tokens
Client Authentication
Overview
Shared Secrets
Private Key JWTs
TLS Client Certificates
Signed Authorize Requests
Calling Endpoints from JavaScript
Protecting APIs
Protecting APIs using ASP.NET Core
Using JWTs
Using Reference Tokens
Authorization based on Scopes and other Claims
Validating Proof-of-Possession
Adding API Endpoints to your IdentityServer
Data Stores and Persistence
Configuration Data
Operational Data
Grants
Keys
Entity Framework Integration
Diagnostics
Logging
Events
ASP.NET Identity Integration
Deployment
Proxy Servers and Load Balancers
ASP.NET Core Data Protection
IdentityServer Data Stores
Distributed Caching
Upgrading
Duende IdentityServer v5.0 to v5.1
IdentityServer4 v4.1 to Duende IdentityServer v5.0
Reference
IdentityServer Options
DI Extension Methods
Endpoints
Discovery Endpoint
Authorize Endpoint
Token Endpoint
UserInfo Endpoint
Introspection Endpoint
Revocation Endpoint
End Session Endpoint
Device Authorization Endpoint
Models
Identity Resource
API Scope
API Resource
Client
Grant Validation Result
Secrets
Services
Profile Service
Persisted Grant Service
Refresh Token Service
IdentityServer Interaction Service
Device Flow Interaction Service
Stores
Resource Store
Client Store
CORS Policy Service
Persisted Grant Store
Device Flow Store
Signing Key Store
Validators
Extension Grant Validator
Custom Token Request Validator
Edit this page
Home
>
Reference
> Validators
Validators
Extension Grant Validator
Custom Token Request Validator