(added in v6.1)
Here’s e.g. the output for a request to the discovery endpoint:
When multiple applications send their traces to the same OTel server, this becomes super useful for following e.g. authentication flows over service boundaries.
The following screenshot shows the ASP.NET Core OpenID Connect authentication handler redeeming the authorization code:
…and then contacting the userinfo endpoint:
The above screenshots are from https://www.honeycomb.io.
IdentityServer can emit very fine grained traces which is useful for performance troubleshooting and general exploration of the control flow.
This might be too detailed in production.
You can select which information you are interested in by selectively listening to various traces:
IdentityServerConstants.Tracing.Basic
High level request processing like request validators and response generators
IdentityServerConstants.Tracing.Cache
Caching related tracing
IdentityServerConstants.Tracing.Services
Services related tracing
IdentityServerConstants.Tracing.Stores
Store related tracing
IdentityServerConstants.Tracing.Validation
More detailed tracing related to validation