Idunno.Authentication
A filled with self-loathing implementation of Basic Authentication, and Certificate Authentication to make me feel like a real security person, all for for ASP.NET Core
This repository contains a collection of various authentication mechanisms for ASP.NET Core, including The project is written primarily in C#, distributed under the Apache License 2.0 license, first published in 2016. Key topics include: aspnet-core, aspnetcore, authentication, basic-authentication.
idunno.Authentication
This repository contains a collection of various authentication mechanisms for ASP.NET Core, including
Basic Authentication started as a demonstration of how to write authentication middleware and was not as something you would seriously consider using, but apparently lots of you want Basic Authentication
for apis, webhooks and other things so here it is.
Certificate Authentication was has been built into ASP.NET Core since 3.0. The code here is now EOL as ASP.NET Core 2.1 is out of support.
Shared Key Authentication is almost an implementation of the shared secret authentication Azure Blob Storage uses, with the Azure specific things like tenant identifier removed. If you're going to use
this in a real project you should have someone else look over the hashing used to reassure yourself (and me) that it doesn't have any mistakes.
As digest authentication typically requires passwords to be stored somewhere in plain text, or in an unsalted hash, there is no digest authentication implementation.
ASP.NET Core versions supported
Basic Authentication is available for ASP.NET Core 2.3 and later.
Shared Key Authentication is available for ASP.NET Core 3.1 and later.
This is not an official Microsoft project, this is an "In my spare time, entirely unsupported"™ effort.
nuget packages
nuget packages are available.
| Authentication Type | nuget package |
|---|---|
| Basic | https://www.nuget.org/packages/idunno.Authentication.Basic/ |
| SharedKey | https://www.nuget.org/packages/idunno.Authentication.SharedKey/ |
Version History
| Version | Notes |
|---|---|
| 3.0.0 | Added .NET 10 support for Basic and SharedKey authentication handlers. <br /> |
| Removed EOL targets from Basic Authentication and updated NetStandard2.0 to target ASP.NET Core 2.3. | |
| Certificate authentication is no longer supported or updated as ASP.NET Core 2.1 is out of support. | |
| 2.4.0 | Added .NET 8 support for Basic and SharedKey, including deprecating the use of ISystemClock. |
| 2.3.1 | Added support for credential encoding character sets, latin1 and utf8 to Basic Authentication. |
| 2.3.0 | Added Shared key authentication<br>Basic authentication now multi-targets ASP.NET Core 2.1, 3.0, 3.1, ASP.NET 5.0, 6.0 and 7.0 |
| 2.2.3 | Basic authentication now multi-targets ASP.NET Core 2.1, 3.0, 3.1, .NET 5.0 and .NET 6.0 |
| 2.2.2 | Basic authentication now multi-targets ASP.NET Core 2.1, 3.0 and 3.1 |
| 2.2.1 | Basic authentication now returns a 421 request when a request is issued over HTTP, unless AllowInsecureProtocol is set |
| 2.2.0 | Basic authentication no longer throws exception when invalid base64 data sent in authentication header<br>Added property for suppressing the WWW-Authenticate header scheme<br>Updated nuget license and package icon <br> |
| 2.1.1 | Added SourceLink<br>Changed library dependencies to remove demands for exact versions, following the .NET Core open-source library guidance<br>nuget package is now signed |
| 2.1.0 | Added Certificate Authentication<br>Fixed Basic Authentication event handling<br>Packages are now Authenticode signed |
Notes
Each handler requires you to authenticate the credentials passed.
You are responsible for hardening this authentication and ensuring it performs under load.
Contributors
Showing top 7 contributors by commit count.
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?v=4)
Related Repositories
MoienTajik/AspNetCore-Developer-Roadmap
Roadmap to becoming an ASP.NET Core developer in 2026
abpframework/abp
Open-source web application framework for ASP.NET Core! Offers an opinionated architecture to build enterprise software solutions with best practices on top of the .NET. Provides the fundamental infrastructure, cross-cutting-concern implementations, startup templates, application modules, UI themes, tooling and documentation.
dotnet/AspNetCore.Docs
Documentation for ASP.NET Core
aspnetboilerplate/aspnetboilerplate
ASP.NET Boilerplate - Web Application Framework
YSGStudyHards/DotNetGuide
🌈【C#/.NET/.NET Core学习、工作、面试指南】记录、收集和总结C#/.NET/.NET Core基础知识、学习路线、开发实战、编程技巧练习、学习视频、文章、书籍、项目框架、社区组织、开发必备工具、技术前沿周刊、常见面试题、面试须知、简历模板、人才招聘、以及自己在学习和工作中的一些微薄见解。希望能和大家一起学习,共同进步。如果本知识库能为您提供帮助,别忘了给予支持哦(关注、点赞、分享)💖。
dodyg/practical-aspnetcore
Practical samples of ASP.NET Core 10, 9, 8.0, 7.0, 6.0, 5.0, 3.1, 2.2, and 2.1,projects you can use. Readme contains explanations on all projects.