OWIN OIDC authentication on older Episerver sites

Many have been looking forward to the built-in support for Federated Security in Episerver CMS which is currently Beta released. In a recent case there was no time to wait and I came up with a workaround that could be used in older Epi versions as well.

UPDATE: Me (and the world?) was quite new to both OWIN and OIDC when writing this, I would nowadays accomplish this using something like this OIDC client from scratch example.

Here's me asking about federated login at Episerver World and I'd also setup a working instance of the mentioned AzureAdSamples' WebApp-OpenIDConnect-DotNet MVC app quite some time ago.

In the case in question there were no problems managing roles locally. They just wanted a way of utilizing a user's Azure login to get inside the Episerver intranet in question.

I added some simple redirects and a shared data layer and got this "bridge" type of concept working between Epi and the OIDC MVC example app.

Here's a sketchy sketch of how it ended up.

Flow of the workaround bridge concept

Published and tagged with these categories: Episerver, ASP.NET, Development