A demo project that authenticates a ServiceStack razor-based Client App using IdentityServer and Vault for generating X509 Signing Certificates for IdentityServer ID Tokens.
This demo project bring in the various Identity Server and Service Stack plugins available in this Solution, namely:
- IdentityServer3.Contrib.ServiceStack - An IdentityServer plugin that supports impersonation authentication of a ServiceStack instance using IdentityServer
- IdentityServer3.Contrib.Vault.CertificateStore - An IdentityServer plugin that uses Vault to generate X509 Signing Certificates
- ServiceStack.Authentication.IdentityServer - A ServiceStack AuthProvider that authenticates a user against an IdentityServer instance
When the project starts, you should be presented with a simple ServiceStack web app with a link that redirects to a secure service in ServiceStack. When you select the link you should be redirected to the IdentityServer instance that prompts you for login details. Login using username "[email protected]" with password "password123". You should then be redirected back to the ServiceStack web app and have access to the secure service (with Authenticate attribute) which displays the secure message.
- Have an unitialised instance of Vault running locally on port 8200. See below for instructions.
- Run the Setup_Samples.ps1 powershell script, located in /samples/Setup (must be run from the directory it is located in).
Having downloaded and extracted the Vault.exe, start an unitialised instance of Vault, run the following vault command:
vault.exe server -conf=vault.confWhere vault.conf contains the following configuration:
listener "tcp" {
address = "127.0.0.1:8200"
tls_disable = 1
}