Early Preview
This is currently very much a preview. Please feel free to try things out,
but don't be upset if anything is not yet working. Feedback is welcome over on our
GitHub Dicussions page.
class Duende.IdentityServer.Configuration.AuthenticationOptions
Assembly: Duende.IdentityServer
Inheritance: object → AuthenticationOptions
Configures the login and logout views and behavior.
Properties
public
string
CookieAuthenticationScheme
Sets the cookie authentication scheme configured by the host used for interactive users. If not set, the scheme will be inferred from the host's default authentication scheme.
This setting is typically used when AddPolicyScheme is used in the host as the default scheme.
public
System.TimeSpan
CookieLifetime
Sets the cookie lifetime (only effective if the IdentityServer-provided cookie handler is used)
public
bool
CookieSlidingExpiration
Specifies if the cookie should be sliding or not (only effective if the built-in cookie middleware is used)
CookieSameSiteMode
Specifies the SameSite mode for the internal authentication and temp cookie
public
bool
RequireAuthenticatedUserForSignOutMessage
Indicates if user must be authenticated to accept parameters to end session endpoint. Defaults to false.
public
string
CheckSessionCookieName
Gets or sets the name of the cookie used for the check session endpoint.
public
string
CheckSessionCookieDomain
Gets or sets the domain of the cookie used for the check session endpoint. Defaults to null.
CheckSessionCookieSameSiteMode
Gets or sets the SameSite mode of the cookie used for the check session endpoint. Defaults to SameSiteMode.None.
public
bool
RequireCspFrameSrcForSignout
If set, will require frame-src CSP headers being emitted on the end session callback endpoint which renders iframes to clients for front-channel sign out notification.
public
bool
CoordinateClientLifetimesWithUserSession
When enabled, all clients' token lifetimes (e.g. refresh tokens) will be tied to the user's session lifetime.
This means when the user logs out, any revokable tokens will be removed.
If using server-side sessions, expired sessions will also remove any revokable tokens, and backchannel logout will be triggered.
An individual client can override this setting with its own CoordinateLifetimeWithUserSession configuration setting.
Methods
public
bool
Equals(object obj)
Inherited from object
protected
void
Finalize()
Inherited from object
public
int
GetHashCode()
Inherited from object
protected
object
MemberwiseClone()
Inherited from object
public
string
ToString()
Inherited from object