ASP.NET Core 3.0 MVC Secure Authentication

ASP.NET Core 3.0 MVC Secure Authentication

Secure an ASP.NET Core 3.0 MVC app using OAuth2, OpenID Connect and Okta.

Ed Crookshanks

Excellent article. I have one question and a typo comment. First the typo - the namespace for the AccountController should probably be different. Looks like a copy-paste infraction. (Not that I’ve ever done that…)

And now the question - why did we not define the callback route? In Okta when we registered the app the login redirect is “signin-oidc” but we never defined that route. When you say that is handled by the OIDC middleware - it adds those routes to the route table? What is the link to that documentation?