What would be the best authentication/authorization approach? RRS feed

  • Question

  • User1583045750 posted


    I'm new to asp.net and I have trouble choosing the right security for web app. Our company have large database and a lot of processes that we want to integrate into this web application. We would like to log users in, using existing windows users in our domain, but we would also like those users to access this site from internet. We would like to handle groups and special permissions from mssql. We would like to have an option, to manually add a user, that is not in our AD, to access specific site. Users have very strict privileges. some can edit certain field but not the whole record, some can add but not edit, ... 

    If anyone can point me to the right direction would be nice...


    Sunday, March 20, 2016 11:09 AM

All replies

  • User1779161005 posted

    If you want single signon, then you need something centralized that can accommodate all of those different authentication types. IdentityServer is a free, open source single signon framework that many people use for achieving that:


    Sunday, March 20, 2016 2:34 PM