Authentication
Authentication-related guides: token-based auth (JWT), third-party login (OAuth 2.0 / OIDC), and mutual TLS (mTLS) client certificates.
Available
| Guide | Summary |
|---|---|
| Client Certificate Authentication | Mutual TLS (mTLS) client certificate authentication. Covers TLS handshake vs auth, Kestrel client cert modes, and safe dev validation patterns. |
| JWT Tokens | Issue and validate JWT bearer tokens, renew/refresh patterns, key material formats, and best practices. |
| OAuth 2.0 | Provider sign-in / delegated authorization using Authorization Code + PKCE, cookie-backed sessions, scopes, and provider setup checklists. |
| OpenID Connect (OIDC) | Identity-focused OAuth 2.0 using OIDC discovery, ID tokens, cookie sessions, PKCE, logout patterns, and provider checklists. |
Return to the Guides index.
Table of contents
- Basic (PowerShell)
- Basic (C# / VB.NET)
- API Key
- JWT Tokens
- Cookies
- Windows Authentication
- Claims & Policies
- Client Certificate
- OpenID Connect (Okta)
- Multiple Schemes
- Client Certificate Authentication
- GitHub Authentication
- Full Demo
- OpenID Connect (Duende Demo)
- Full Demo
- JWT Tokens
- OAuth 2.0
- OpenID Connect (OIDC)