Clinically.Kinde.Authentication
1.0.3
See the version list below for details.
dotnet add package Clinically.Kinde.Authentication --version 1.0.3
NuGet\Install-Package Clinically.Kinde.Authentication -Version 1.0.3
<PackageReference Include="Clinically.Kinde.Authentication" Version="1.0.3" />
paket add Clinically.Kinde.Authentication --version 1.0.3
#r "nuget: Clinically.Kinde.Authentication, 1.0.3"
// Install Clinically.Kinde.Authentication as a Cake Addin #addin nuget:?package=Clinically.Kinde.Authentication&version=1.0.3 // Install Clinically.Kinde.Authentication as a Cake Tool #tool nuget:?package=Clinically.Kinde.Authentication&version=1.0.3
Integrating Kinde Auth with .NET8 Blazor Apps
This library assists with integrating Kinde with .NET applications. It is still in development but usable.
Add the following NuGet package:
Clinically.Kinde.Authentication
The following needs to be in your appSettings.json
on the server:
"Kinde": {
"Authority": "<From Kinde>",
"ClientId": "<From Kinde>",
"ClientSecret": "<From Kinde>",
"ManagementApiClientId": "<From Kinde>",
"ManagementApiClientSecret": "<From Kinde>",
"SignedOutRedirectUri": "https://localhost:5001/signout-callback-oidc",
"JwtAudience": "<From Kinde - Audience for API, if using JWT Bearer Auth in addition to Identity>",
},
"AppConfig": {
"BaseUrl": "https://localhost:5001"
}
You then need the following in your server-side Program.cs
:
builder.Services.AddKindeAuthentication(opt =>
{
opt.UseJwtBearerValidation = false; // default to false
opt.UseMemoryCacheTicketStore = false; // default to false
});
For Blazor WASM, you also need to add this to Program.cs
on the client:
builder.Services.AddKindeWebAssemblyAuthentication();
Roles
You can use the standard Authorize attribute:
[Authorize(Roles = "Admin")]
Permissions
In order to add authorization policies for your Kinde permissions:
builder.Services
.AddAuthorizationBuilder()
.AddKindePermissionPolicies<Permissions>();
Then create a Permissions class that contains all the Kinde permissions you want to use:
public class Permissions
{
public const string MyPermissionName = "myPermissionNameInKinde";
}
Then you can use the permissions in your controllers or Razor pages:
[Authorize(Policy = Permissions.MyPermissionName)]
Notes
- You need to go to the Tokens section of your app, and enable the Roles and Email claims in the access token.
- In order to access the management API (e.g. to add users programmatially etc), inject
KindeManagementClient
into your services. Note you will need a separate M2M app in Kinde for this, with access to the Management API. - You can also inject
KindeUserManager
instead of the standardUserManager
to get access to Kinde-specific methods. - Inject
BlazorUserAccessor
to get access to the current user in your Blazor components.
I've only just recently worked out how to tie all this together, so some bits may not be entirely required etc. Take this as a proof of concept at the moment 😃
To Do List:
- Feature flags not currently implemented (but will work the same way as Permissions)
- Support more claims/properties in the strongly typed user objects
Product | Versions Compatible and additional computed target framework versions. |
---|---|
.NET | net8.0 is compatible. net8.0-android was computed. net8.0-browser was computed. net8.0-ios was computed. net8.0-maccatalyst was computed. net8.0-macos was computed. net8.0-tvos was computed. net8.0-windows was computed. |
-
net8.0
- Microsoft.AspNetCore.Authentication.JwtBearer (>= 8.0.3)
- Microsoft.AspNetCore.Authentication.OpenIdConnect (>= 8.0.3)
- Newtonsoft.Json (>= 13.0.3)
- Polly (>= 8.3.1)
NuGet packages
This package is not used by any NuGet packages.
GitHub repositories
This package is not used by any popular GitHub repositories.