Using Kentico as OAuth2 server

David g asked on June 9, 2014 07:45

Hi,

I'm a .NET developer and I want to extend Kentico (v7) to include OAuth2 service, so that 3rd party apps can authenticate their users against our Kentico userbase.

My search so far didn't find any existing mechanism for this. Not out of the box and not a module I can install.

From what I gathered so far I will have to implement that on my own and I will probably base it on DotNetOpenAuth: https://github.com/DotNetOpenAuth/DotNetOpenAuth/wiki/Security-scenarios#developing-a-user-specific-authorization-server

Would be happy to hear from you experienced Kentico-ers whether there's anything I overlooked or should know?

Thanks in advance! David.

Recent Answers

Martin Hejtmanek answered on July 23, 2014 09:25

Hi David,

I a not sure how exactly OAuth2 works, but anyway, in Kentico 7 the only easy way to do external authentication is this:

https://kentico.atlassian.net/wiki/display/K7SG/Managing+external+authentication

Here is the same for Kentico 8:

https://docs.kentico.com/display/K8/Handling+custom+external+authentication

In case this would not be enough, you may want to consider using claim-based authentication as described here:

https://docs.kentico.com/display/K8/Claims-based+authentication

Here is a full list of authentication possibilities for Kentico 8:

https://docs.kentico.com/display/K8/Managing+external+authentication

Let me know if you need any more guidance

0 votesVote for this answer Mark as a Correct answer

Marcello R. answered on November 17, 2014 17:06

Hello, I have the same question. In particular I would like to know if Kentico can work as "issuer" for 3rd party apps in a claim-based-auth scenario.

By the way I would also point out that the answer to the original question (sorry, I cannot read the name of the answering user) is not pertinent because it refers to the opposite case (Kentico is authorized by external app) while the original question (and, of course, my question) ask for Kentico to be used as authentication service by 3rd parties. Please note that the 3rd party application is not based on ASP.NET/.NET so FormsAuth is not an acceptable option.

Thank you and cheers. M.

0 votesVote for this answer Mark as a Correct answer

Martin Hejtmanek answered on November 21, 2014 16:41

Hi Marcello,

I don't see a reason why it wouldn't work, technically the provider is just HTTP endpoint for some service providing token. Kentico doesn't provide such functionality out-of-the-box, but it shouldn't be too hard to implement it for you, you do it the same way as in any other ASP.NET application. I expect that you would use Kentico membership API to authenticate users then.

0 votesVote for this answer Mark as a Correct answer

   Please, sign in to be able to submit a new answer.