Last post Oct 04, 2015 09:36 AM by BrockAllen
Oct 03, 2015 05:26 PM|iAuth|LINK
What is the best practice for securing Custom User Service, Custom Scope Store and Client Store?
Should I add by default "admin" user with appropriate "admin" scope?
Oct 03, 2015 05:41 PM|BrockAllen|LINK
I don't follow -- Can you elaborate on your question?
Oct 04, 2015 05:12 AM|iAuth|LINK
I would like to implement stores for users, scopes, clients etc. to support persistence for Identity Server 3 (like IdentityServer.v3.EntityFramework, but using different ORM).
I also want to implement Identity Manager Service that will allow management of users, scopes, clients. This will be Web API service that I need to secure as well with Oauth. In order to do so, I need to add default "identitymanagement" scope and default
"admin" user with this scope. The service it self will require this scope.
Is this the right way?
Oct 04, 2015 09:36 AM|BrockAllen|LINK
Those are 2 different things. I'd first do the custom stores for IdentityServer and you can use the EF implementation as a guide.
As for IdentityManager, it's just a client application to IdentityServer. So you'd just need a record in your DB for it.