This article describes how to use access tokens in HTTP requests to access protected resources such as Sitefinity Web API.
NOTE: This approach is valid only for projects that use the OpenID authentication protocol. For projects on the Default authentication protocol, you must configure Oauth2. For more information, see Configure Oauth2.
You need to perform the following:
Following are two samples demonstrating how to configure your applications with Sitefinity CMS and acquire an access token using the Resource owner flow and the Implicit flow. You can also take a look at the sample MVC application, which can obtain access tokens from Sitefinity CMS with implicit flow and can call the Sitefinity CMS Web API at the GitHub repository.
Perform the following:
NOTE: If you have an external project, you must install the official IdentityModel NuGet package. You do not need to do this, if you have already installed Progress.Sitefinity.Authentication NuGet package
For more information about Endpoints, supported by IdentityServer 3, see the following:
NOTE: You can configure the STS endpoint to be different from http://yoursitefinitysite/Sitefinity/Authenticate/OpenID/connect.
To do this, navigate to Administration » Settings » Advanced » Authentication » SecurityTokenService » ServicePath.
Sign up for our free beginner training. Boost your credentials through advanced courses and certification. Register for Sitefinity training and certification.
To submit feedback, please update your cookie settings and allow the usage of Functional cookies.
Your feedback about this content is important