Class IdentityServerBuilderExtensionsCrypto
- Namespace
- Microsoft.Extensions.DependencyInjection
- Assembly
- Duende.IdentityServer.dll
Builder extension methods for registering crypto services
public static class IdentityServerBuilderExtensionsCrypto- Inheritance
-
IdentityServerBuilderExtensionsCrypto
- Inherited Members
Methods
AddDeveloperSigningCredential(IIdentityServerBuilder, bool, string?, RsaSigningAlgorithm)
Sets the temporary signing credential.
public static IIdentityServerBuilder AddDeveloperSigningCredential(this IIdentityServerBuilder builder, bool persistKey = true, string? filename = null, IdentityServerConstants.RsaSigningAlgorithm signingAlgorithm = RsaSigningAlgorithm.RS256)Parameters
builderIIdentityServerBuilderThe builder.
persistKeyboolSpecifies if the temporary key should be persisted to disk.
filenamestringThe filename.
signingAlgorithmIdentityServerConstants.RsaSigningAlgorithmThe signing algorithm (defaults to RS256)
Returns
AddSigningCredential(IIdentityServerBuilder, ECDsaSecurityKey, ECDsaSigningAlgorithm)
Sets an ECDsa-based signing credential.
public static IIdentityServerBuilder AddSigningCredential(this IIdentityServerBuilder builder, ECDsaSecurityKey key, IdentityServerConstants.ECDsaSigningAlgorithm signingAlgorithm)Parameters
builderIIdentityServerBuilderThe builder.
keyECDsaSecurityKeyThe ECDsa key.
signingAlgorithmIdentityServerConstants.ECDsaSigningAlgorithmThe signing algorithm
Returns
AddSigningCredential(IIdentityServerBuilder, RsaSecurityKey, RsaSigningAlgorithm)
Sets an RSA-based signing credential.
public static IIdentityServerBuilder AddSigningCredential(this IIdentityServerBuilder builder, RsaSecurityKey key, IdentityServerConstants.RsaSigningAlgorithm signingAlgorithm)Parameters
builderIIdentityServerBuilderThe builder.
keyRsaSecurityKeyThe RSA key.
signingAlgorithmIdentityServerConstants.RsaSigningAlgorithmThe signing algorithm
Returns
AddSigningCredential(IIdentityServerBuilder, SecurityKey, string)
Sets the signing credential.
public static IIdentityServerBuilder AddSigningCredential(this IIdentityServerBuilder builder, SecurityKey key, string signingAlgorithm)Parameters
builderIIdentityServerBuilderThe builder.
keySecurityKeyThe key.
signingAlgorithmstringThe signing algorithm
Returns
AddSigningCredential(IIdentityServerBuilder, SigningCredentials)
Sets the signing credential.
public static IIdentityServerBuilder AddSigningCredential(this IIdentityServerBuilder builder, SigningCredentials credential)Parameters
builderIIdentityServerBuilderThe builder.
credentialSigningCredentialsThe credential.
Returns
AddSigningCredential(IIdentityServerBuilder, X509Certificate2, string)
Sets the signing credential.
public static IIdentityServerBuilder AddSigningCredential(this IIdentityServerBuilder builder, X509Certificate2 certificate, string signingAlgorithm = "RS256")Parameters
builderIIdentityServerBuilderThe builder.
certificateX509Certificate2The certificate.
signingAlgorithmstringThe signing algorithm (defaults to RS256)
Returns
Exceptions
- ArgumentNullException
- InvalidOperationException
X509 certificate does not have a private key.
AddSigningCredential(IIdentityServerBuilder, string, StoreLocation, NameType, string)
Sets the signing credential.
public static IIdentityServerBuilder AddSigningCredential(this IIdentityServerBuilder builder, string name, StoreLocation location = StoreLocation.LocalMachine, NameType nameType = NameType.SubjectDistinguishedName, string signingAlgorithm = "RS256")Parameters
builderIIdentityServerBuilderThe builder.
namestringThe name.
locationStoreLocationThe location.
nameTypeNameTypeName parameter can be either a distinguished name or a thumbprint
signingAlgorithmstringThe signing algorithm (defaults to RS256)
Returns
Exceptions
- InvalidOperationException
certificate: '{name}'
AddValidationKey(IIdentityServerBuilder, params SecurityKeyInfo[])
Adds the validation keys.
public static IIdentityServerBuilder AddValidationKey(this IIdentityServerBuilder builder, params SecurityKeyInfo[] keys)Parameters
builderIIdentityServerBuilderThe builder.
keysSecurityKeyInfo[]The keys.
Returns
AddValidationKey(IIdentityServerBuilder, ECDsaSecurityKey, ECDsaSigningAlgorithm)
Adds an ECDSA-based validation key.
public static IIdentityServerBuilder AddValidationKey(this IIdentityServerBuilder builder, ECDsaSecurityKey key, IdentityServerConstants.ECDsaSigningAlgorithm signingAlgorithm = ECDsaSigningAlgorithm.ES256)Parameters
builderIIdentityServerBuilderThe builder.
keyECDsaSecurityKeyThe ECDSA key
signingAlgorithmIdentityServerConstants.ECDsaSigningAlgorithmThe ECDSA-based signing algorithm
Returns
AddValidationKey(IIdentityServerBuilder, RsaSecurityKey, RsaSigningAlgorithm)
Adds an RSA-based validation key.
public static IIdentityServerBuilder AddValidationKey(this IIdentityServerBuilder builder, RsaSecurityKey key, IdentityServerConstants.RsaSigningAlgorithm signingAlgorithm = RsaSigningAlgorithm.RS256)Parameters
builderIIdentityServerBuilderThe builder.
keyRsaSecurityKeyThe RSA key
signingAlgorithmIdentityServerConstants.RsaSigningAlgorithmThe RSA-based signing algorithm
Returns
AddValidationKey(IIdentityServerBuilder, X509Certificate2, string)
Adds the validation key.
public static IIdentityServerBuilder AddValidationKey(this IIdentityServerBuilder builder, X509Certificate2 certificate, string signingAlgorithm = "RS256")Parameters
builderIIdentityServerBuilderThe builder.
certificateX509Certificate2The certificate.
signingAlgorithmstringThe signing algorithm
Returns
Exceptions
AddValidationKey(IIdentityServerBuilder, string, StoreLocation, NameType, string)
Adds the validation key from the certificate store.
public static IIdentityServerBuilder AddValidationKey(this IIdentityServerBuilder builder, string name, StoreLocation location = StoreLocation.LocalMachine, NameType nameType = NameType.SubjectDistinguishedName, string signingAlgorithm = "RS256")Parameters
builderIIdentityServerBuilderThe builder.
namestringThe name.
locationStoreLocationThe location.
nameTypeNameTypeName parameter can be either a distinguished name or a thumbprint
signingAlgorithmstringThe signing algorithm