Skip to content

Releases: microsoft/franceconnect-identity-provider-dotnet-webapi-aspnetcore

v2-rc1

10 Nov 14:20
@AmineI AmineI
v2-rc1-DotNet6
b954361
Compare
Choose a tag to compare
v2-rc1 Latest
Latest

New version of the Identity Provider, rebuilt from scratch with user management capabilities, and strong authentication with TOTP & FIDO2 support ( #13)

Main authentication and OIDC scenarios are tested, but an implementation guide (to document the choices made and write such a project from scratch) was not written yet.
Please find details about the implementation process on the PR #13

Notable Changes

  • Add TOTP support for strong authentication
  • Add FIDO2 devices support for strong authentication (such as security keys)
  • Written on .NET 6
  • Use the ASP.NET Razor Pages model instead of ASP.NET MVC. These models are very similar and can be interchanged easily (see this guide
  • Manage user accounts through ASP.NET Identity (and the relevant database), instead of hardcoded test users
  • Provide account management capabilities with ASP.NET Identity
  • Integrate IdentityServer and ASP.NET Identity to support sending user claims through OIDC
  • UI Changes

Complete changelist: https://github.com/microsoft/franceconnect-identity-provider-dotnet-webapi-aspnetcore/commits/v2-rc1-DotNet6

Assets 2

v1.1

19 Oct 07:26
@AmineI AmineI
v1.1-DotNetCore-3.1
e5d0f91
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.1

New release of the starter kit and partial documentation updates, using .NET Core 3.1
Note : Please see the v2.0 (prerelease), which is rebuilt from the ground up to support strong authentication (MFA with a one time password, or with FIDO2 compatible devices such as biometrics scanners, or security keys)

Notable Changes

  • Technical migration and refresh of the web app to .NET Core 3.1 & IdentityServer4
  • Rework signing mechanism
  • Add EidasLevelClaimService , responsible for adding the eIDAS level to the id token as an acr claim
  • Create an Health Check endpoint
  • General code improvements, bug fixes, and refactorisations
  • Updated client-side assets management systems
  • Add Github Actions for automated code analysis, build, and deployment of the app
  • Setup InMemory databases for development environments

Notes :

  • The documentation to setup such a provider from scratch was not updated to the new release changes. Please browse the specific PR/commits for implementations and motivation of the changes. A new version rebuilt from scratch is in development.

  • The deprecated FIDO project was deleted, as it is no longer relevant (using environment-specific APIs, with Windows Hello). It can still be accessed through the git history. The next version (currently in pre-release on this repository) support these scenarios and more.

Complete changelist: https://github.com/microsoft/franceconnect-identity-provider-dotnet-webapi-aspnetcore/commits/v1.1-DotNetCore-3.1

Assets 2