Single sign-on and Web API security with OpenID Connect using Thinktecture IdentityServer v3

In the past 10 years building web applications, developers have used separate protocols for performing authentication and authorization. Authentication to web applications was normally performed with WS-Federation or SAML2-P, whereas authorization for API calls was performed with OAuth or OAuth2. Now with the recently ratified OpenID Connect specification these two tasks are combined into a single protocol. We’ll discuss how this protocol can be used in .NET applications and how the open source Thinktecture IdentityServer can provide centralized authentication and authorization for your applications.