OWIN OIDC authentication on older Episerver sites
Many have been looking forward to the built-in support for Federated Security in Episerver CMS which is currently Beta released. In a recent case there was no time to wait and I came up with a workaround that could be used in older Epi versions as well.
UPDATE: Me (and the world?) was quite new to both OWIN and OIDC when writing this, I would nowadays accomplish this using something like this OIDC client from scratch example.
Here's me asking about federated login at Episerver World and I'd also setup a working instance of the mentioned AzureAdSamples' WebApp-OpenIDConnect-DotNet MVC app quite some time ago.
In the case in question there were no problems managing roles locally. They just wanted a way of utilizing a user's Azure login to get inside the Episerver intranet in question.
I added some simple redirects and a shared data layer and got this "bridge" type of concept working between Epi and the OIDC MVC example app.
Here's a sketchy sketch of how it ended up.
Published and tagged with these categories: Episerver, ASP.NET, Development