简体繁体中英

Custom Identity Server 4 deployed on Azure App Service endpoints exposed via Azure API Management

原文 2020-04-05 10:41:53 1 1 azure/ azure-web-app-service/ identityserver4/ azure-api-management

I have created an Identity Server 4 based application using .NET Core 3.0, and deployed it to an Azure App Service running on a Windows hosting environment.

I also created an Azure API Management service and am trying to expose Identity Server endpoints through API Management only.

Is this a good design or a bad design? Should I expose Identity Server 4 endpoints directly?

Behind API Management, I have a few other API that should only be accessed by valid end users.

1 answers

Is this a good design or a bad design? Should I expose Identity Server 4 endpoints directly?

In fact,there is no standard answer for such question,however i tried to provide some references and suggestions here.

In my opinion, it depends on what features you involves. As i know,Identity Server 4 is an OpenID Connect and OAuth 2.0 framework for ASP.NET Core.In other words to say, it's generally a middleware for authentication.

Authenticate feature could be supported by APIM as well. Additional,APIM supports more features.Such as Groups ans Subscriptions to control the roles and users in your API accesses.Or you could define many strategies in the Policy definition.The monitor logs could be easily captured into azure storage or azure event hub for analysis.

Anyway,for supporting more features, i would suggest you using APIM directly.

Azure fluent management api bind custom root domain to app service

Using Azure Managed Identity for app deployed to Azure?

Is managed identity available for communication between API Management service and Azure functions?

Do I need Azure API Management service to restrict web api endpoints inside an Azure virtual network?

Azure API Management + Azure Function and managed identity

AZURE REST API - Fast API as Azure App Service or Azure Function App with Http triggered functions as endpoints?

Is it possible to change the redirected URI for an Azure Function App using App Service Auth accessed via an API Management endpoint?

WSO2 Identity Server and WSO2 API Management in Azure

Test http2 in Azure api management and Azure app service backend

Azure API management not listing all endpoints\methods

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Azure fluent management api bind custom root domain to app service Using Azure Managed Identity for app deployed to Azure? Is managed identity available for communication between API Management service and Azure functions? Do I need Azure API Management service to restrict web api endpoints inside an Azure virtual network? Azure API Management + Azure Function and managed identity AZURE REST API - Fast API as Azure App Service or Azure Function App with Http triggered functions as endpoints? Is it possible to change the redirected URI for an Azure Function App using App Service Auth accessed via an API Management endpoint? WSO2 Identity Server and WSO2 API Management in Azure Test http2 in Azure api management and Azure app service backend Azure API management not listing all endpoints\methods

Related Tags

Custom Identity Server 4 deployed on Azure App Service endpoints exposed via Azure API Management

Question

1 answers

solution1 0 2020-04-22 02:05:12

solution1
0 2020-04-22 02:05:12