ASP.NET OAuth Single Sign-On (SSO)

1. Windows Authentication:

ASP.NET OAuth/JWT SSO Module has support for Integrated Windows Authentication(IWA). Integrated Windows Authentication is the preferred approach to authentication whenever users are part of the same Windows domain as the server. Users are authenticated against an existing identity store such as Active Directory which gives seamless login experience.

2. Single Sign-On (SSO) into Multiple applications:

ASP.NET OAuth/JWT SSO Module also supports for login (asp.net sso) into multiple asp.net application with one IdP and one set of credentials using OAuth/JWT protocol. Once the user will be logged into one of the applications, he/she will be logged into to asp.net application automatically that is no need to enter login credentials for other applications again.

3. Single Sign-On (SSO) into single custom ASP.NET / ASP.NET MVC / ASP.NET Core / VB.NET application:

ASP.NET SAML SSO module helps you to add functionality for Single Sign-On (SSO) to your ASP.NET, ASP.NET MVC, ASP.NET Core, VB.NET applications. Implementation of Single Sign On (SSO) in ASP.NET, ASP.NET MVC, ASP.NET Core, VB.NET applications will help you to protect your web application by providing authentication using your existing identity provider.

Step 1: Download and extract package.

• Download miniOrange ASP.NET OAuth 2.0 Module.
• For Setting up the connector, extract the asp-net-oauth-sso-module.zip, you will find a DLL file miniorange-oauth-sso.dll, a configuration file oauthsso.config and a integration.md file which contain the steps for adding the module into your application.

Step 2: Add the connector in your application.

• Add miniorange-oauth-sso.dll in bin folder (where your other DLL files exists) for your application.
• Register miniorangeoauthsso module in your application according to the provided steps in the integration.md file.
• Add the provided configuration file oauthsso.config in the root directory for your application.
• After integration open browser and browse the connector dashboard with URL below:
  https:// <your-application-base-url>/?ssoaction=config
• If it pop up the registration page or login page, you have successfully added the miniOrange oauth sso connector for your application.

• Register or Login for configuring the connector.

Step 3: Configure miniOrange ASP.NET OAuth Client

• Configure your OAuth/JWT Server. While configuring your OAuth/JWT server provide the Redirect/Callback URL from the OAuth/JWT Client.
• You will get the Client ID, Client Secret, Authorize Endpoint, Access Token Endpoint, Get User Info Endpoint from your OAuth/JWT Server. You need to verify the supported scope with the OAuth/JWT Server.

• Fill all the required details and click on Save Configuration.

Step 4: Test Configuration

• After saving configuration, click on the Test Configuration button to verify if you have configured correctly.
• On successful configuration, you will get Attributes Name and Attribute Values on Test Configuration window. The below screenshot shows a successful result.

Step 5: Attribute Mapping

• Map Attribute Names provided by your OAuth/JWT Server with your ASP.NET application Attributes given under Attribute Mapping Section and click on Save Attribute Mapping.

• Note: All the mapped attributes will be stored in the session so that you can access them in your application.

Step 6: Integration Code

• You can find the integration code in Integration Code tab in the connector. Just copy-paste that code snippet wherever you want to access the user attributes.

Step 7: Add following link in your application for Single Sign-On (SSO)

• Use the following URL as a link in your application from where you want to perform SSO:
  http://base-url/?ssoaction=login
• For example you can use it as:
  <a href="http://base-url/?ssoaction=login”>Log in</a>"

List of popular OAuth/JWT Providers we support

• Azure AD
• AWS Cognito
• WHMCS
• Ping Federate
• Slack
• Discord
• HR Answerlink / Support center
• WSO2
• Wechat
• Weibo
• LinkedIn
• Gitlab
• Shibboleth
• Blizzard (Formerly Battle.net)
• servicem8
• Meetup
• Gluu Server

LIST OF POPULAR OPENID CONNECT (OIDC) PROVIDERS WE SUPPORT

• Amazon
• Salesforce
• PayPal
• Google
• AWS Cognito
• Okta
• OneLogin
• Yahoo
• ADFS
• Gigya
• Swiss-RX-Login (Swiss RX Login)