Open Closed

OpenId authorization clarification in authserver for machine authentication and controller/application service authorization #8495


User avatar
0
Anjaneyulu created
  • ABP Framework version: v9.0.1
  • UI Type: MVC
  • Database System: EF Core (SQL Server)
  • Tiered (for MVC) or Auth Server Separated (for Angular): yes
  • Exception message and full stack trace:
  • Steps to reproduce the issue:

My server i see the for web and APIhost that scope as profie,email etc and MyprojectName - which i believe acts as the scope for complete project resources(apis,pages etc).

Now i have two questions: 1. How can i create a scope for certain resources like to a specific controller 2. I have a machine to server communication, where i dont have userlogged in and i need to handle the secure api communication/authorization based on the machine identity. How can i user openid/autheserver to handle this scenario in abp.


1 Answer(s)
  • User Avatar
    0
    liangshiwei created
    Support Team Fullstack Developer

    HI,

    There is no relation to ABP or OpenId.

    They are based on the ASPNETCore authorization system, you may need to customize the authorization check.

    • https://learn.microsoft.com/en-us/aspnet/core/security/authorization/iauthorizationpolicyprovider?view=aspnetcore-9.0
    • https://learn.microsoft.com/en-us/aspnet/core/security/authorization/dependencyinjection?view=aspnetcore-9.0

    I have a machine to server communication, where i dont have userlogged in and i need to handle the secure api communication/authorization based on the machine identity. How can i user openid/autheserver to handle this scenario in abp.

    We have document here https://abp.io/docs/latest/guides/synchronous-interservice-communication

Made with ❤️ on ABP v9.1.0-preview. Updated on December 13, 2024, 06:09