Implement the OAuth 2.0 Authorization Code with PKCE Flow

oktadev-blog · November 3, 2020, 2:09pm

kelvin arbi

anyone know how to implement token validation with netcore 3.1 API?
tried this one https://www.scottbrady91.co…
but returns 'authorization failed’

using Microsoft.AspNetCore.Builder; using Microsoft.Extensions.DependencyInjection; using Microsoft.Extensions.Logging; using Microsoft.IdentityModel.Protocols.OpenIdConnect; namespace PkceClient.AspNetCore3 { public class Startup { public void ConfigureServices(IServiceCollection services) { services.AddControllersWithViews(); services.AddLogging(loggingBuilder => { loggingBuilder.AddConsole(); }); services.AddAuthentication(options => { options.DefaultAuthenticateScheme = “cookie”; options.DefaultSignInScheme = “cookie”; options.DefaultChallengeScheme = “oidc”; }) .AddCookie(“cookie”) .AddOpenIdConnect(“oidc”, options => { options.Authority = “https://xxx.okta.com”; options.ClientId = “0oaqkp3xu6sCoZljp4x6”; options.ResponseType = OpenIdConnectResponseType.Code; options.ResponseMode = “form_post”; options.CallbackPath = “/signin-oidc”; //Enable PKCE(authorization code flow only) options.UsePkce = true; }); } public void Configure(IApplicationBuilder app) { app.UseDeveloperExceptionPage(); app.UseStaticFiles(); app.UseRouting(); app.UseAuthentication(); app.UseAuthorization(); app.UseEndpoints(endpoints => endpoints.MapDefaultControllerRoute()); } } }

Post		Replies	Views
Using PKCE Authorization Code with a Browser based SPA Questions	6	7427	January 24, 2024
How Authentication and Authorization Work for SPAs Developer Blog Comments	2	1596	April 29, 2024
Authorization Code w/ PKCE Flow for Web Apps OAuth/OIDC	4	3634	April 24, 2023
Use PKCE with OAuth 2.0 and Spring Boot for Better Security Developer Blog Comments	6	3594	May 6, 2022
Use OpenID Connect with PKCE for More Secure SPAs Developer Blog Comments	0	2621	August 19, 2019

Implement the OAuth 2.0 Authorization Code with PKCE Flow

Related topics