Identityserver4: Federation Gateway

http://docs.identityserver.io/en/release/topics/federation_gateway.html

@TomCJones

Thanks for the reply; read that article but it's still not clear to me. I'm also reading about this: https://www.identityserver.com/articles/identityserver4-ws-federation-and-sharepoint/

Is this, the above link, the way to go or the complete or the complete opposite direction?

A federation gateway is a IS4 with support for external providers. That's it.

Think of a "federation gateway" as a pattern - not a specific configuration.

@leastprivilege Thanks for the reply. I really, really appreciate it.

I'm coming to find out this is bit of misnomer. Sounds like it can mimic the architecture, more so, and that's it? But if I wanted to go the extra mile then I would need to implement my own ws-federation endpoint, like (how Scott Brady did) in that link I posted, or wait until the team releases an official NUGET plugin (like how they did for IDSRV3). Am I right? Does that sound about right?

The ws-fed endpoint means that IS supports more than one protocol as an IdP -

the fed gateway means that IS itself is a client to more than one IdP.

I know it is confusing ;)

I understand the OAUTH2 flow with IDSRV4 and we're currently implementing token access and user authentication with open ID connect. I've done the external authentication quick-start and read the docs about external providers.

Aside from listed concepts, nothing solid is telling me how do you set up IDSRV4 to be a federation gateway? I'm still not clear on how to configure the server and a user client.

Much help would be appreciated.

were you able to solve the issue ?

This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.