Single Sign-on with OpenID Connect
Steeltoe builds on top of
Microsoft.AspNetCore.Authentication.OpenIdConnect. You may benefit from reading more about using OpenID Connect in ASP.NET Core.
Usage of Steeltoe's OpenID Connect provider is effectively identical to that of the OAuth2 provider, although the behind-the-scenes story is a little different. The OpenID Connect provider uses Microsoft's OpenId Connect implementation, and settings are based on
Microsoft.AspNetCore.Authentication.OpenIdConnect.OpenIdConnectOptions, with these additional properties:
|Scopes to request for tokens in addition to
|The timeout (in milliseconds) for calls to the auth server.
|Validate Auth server certificate.
Each setting above must be prefixed with
Aside from the different base class for options, the only usage change is to call
.AddCloudFoundryOpenId instead of