This repository has been archived by the owner. It is now read-only.
[deprecated] Thinktecture.IdentityModel
Clone or download
leastprivilege Merge pull request #172 from josiahdj/patch-1
Prevent null reference exception when RouteData.Value is null
Latest commit 1a70b16 Oct 18, 2016
Type Name Latest commit message Commit time
Failed to load latest commit information.
nuget Updated nuspec for Client Mar 8, 2015
samples updated old authZ sample Mar 23, 2015
source Prevent null reference exception when RouteData.Value is null Oct 16, 2016
.gitattributes Initial commit Oct 21, 2013
.gitignore updated gitignore Oct 22, 2013
LICENSE Initial commit Oct 21, 2013 Added Hawk to readme Oct 30, 2013

Thinktecture IdentityModel

This is the successor to the very popular Thinktecture.IdentityModel.45 repository. The old project has reached a certain size where it made more sense to break up the different features areas in separate assemblies and projects.

The new IdentityModel consists of the following parts:


  • Base64Url encoding
  • Epoch Date Time conversion
  • Random number generation
  • Time-constant string comparison
  • Certificate Store Access
  • Useful constants when dealing with algorithms, date time formats, tokens and protocols
  • Anoynmous claims principal
  • Authentication instant claim
  • Claims-based authorization
  • ClaimsPrincipal factory
  • Extension Methods for XML, security token conversion, X.509 certificates

Extensions and Middleware for OWIN/Katana

  • Claims transformation
  • Token format support
  • Support for retrieving tokens from headers or query strings

HTTP Security / OAuth2 Client Library

  • Portable library (.NET 4.5, Windows 8, Windows Phone 8)
  • OAuth2 client library
  • URL generation for code and implicit flow
  • Token requests for authorization codes, resource owner credentials, refresh tokens, assertions
  • Parsing of authorize and token responses
  • Extensible
  • HttpClient helpers for dealing with Basic Authentication and token headers

Embedded STS

  • Easy to use embeddable, zero-config STS for ASP.NET


  • Implementation of Hawk authentication mechanism for Web API and OWIN


  • WS-Trust bindings for UserName, Windows, Issued Tokens and X.509 certificates
  • Helpers for dealing with RSTRs and entropy
  • WS-Trust Client


  • WIF integration for Simple Web Tokens