Why IdentityServer?
One IDP, all application types and APIs
IdentityServer can be used to uniformly authenticate mobile applications, web applications (including ASP.NET, ASP.NET Core and Angular) and desktop applications. In addition, IdentityServer provides security for the APIs used by these applications. IdentityServer can also be used to securely open your APIs to external parties.
Single Sign On
If multiple applications are available to users, you do not want the user to have to log in again for each application. IdentityServer supports this principle out of the box across different application types. This ensures that authentication logic is concentrated in one place rather than spread across multiple applications.
Federation Gateway & Social Login
IdentityServer can be integrated with other IDPs across different protocols. This allows you to set up a federation with your sister companies as well as with Azure AD, Google, Facebook, Microsoft and so on. All of this logic is concentrated at IdentityServer level, meaning that you do not have to implement anything at application level.
Customization
IdentityServer can be fully adapted to meet the needs of your company. As well as the user interface, this includes integration with all manner of user stores – from your own user database to integration with Active Directory. In addition, different authentication methods can be built in, from a username/password combination to two-factor authentication with a smartphone.
Speed of implementation standards
In IT, things move a little faster than in the rest of the world. If there is one area that moves faster than the others, it is security. New issues arise week in, week out, while new standards are continually developed to resolve them. This makes it essential for any identity provider to implement these standards quickly and correctly. IdentityServer has a reputation as one of the fastest, most accurate frameworks for implementing these new standards. In addition, IdentityServer is fully open source, which means that the code can be carefully reviewed by hundreds of experts.