Complete OAuth/OIDC for .NET 10+

Add secure authentication to your app in minutes. Open-source, self-hosted, no vendor lock-in.

Get Started View on GitHub

var builder = WebApplication.CreateBuilder(args);
builder.Services.AddCoreIdent(o => {
    o.Issuer = "https://auth.example.com";
    o.Audience = "https://api.example.com";
});
builder.Services.AddSigningKey(o => o.UseRsa("key.pem"));

var app = builder.Build();
app.MapCoreIdentEndpoints();
app.Run();

That's it. Token issuance, OIDC discovery, JWKS — ready to go.

🔐

Full OAuth 2.0 / OIDC

Authorization Code + PKCE, client credentials, refresh tokens, discovery, JWKS, revocation, introspection.

🔑

Passwordless-First

Email magic links, passkeys/WebAuthn, and SMS OTP built-in. Modern auth without password headaches.

🧩

Flexible Storage

In-memory for development, EF Core for production. Swap stores without changing your code.

🛡️

Secure by Default

RS256/ES256 signing, refresh token rotation, theft detection. No insecure defaults.

What's Included

✉️

Email Magic Links

Passwordless login via secure email tokens. Pluggable email provider interface.

🔐

Passkeys / WebAuthn

Modern biometric and hardware key authentication. Built on FIDO2 standards.

📱

SMS OTP

One-time passwords via SMS. Pluggable SMS provider for Twilio, AWS SNS, etc.

📊

OpenTelemetry Metrics

Built-in metrics via System.Diagnostics.Metrics. Track token issuance, auth durations, and more.

🛠️

CLI Tool

dotnet coreident for project init, key generation, client management, and migrations.

☁️

Aspire Integration

Health checks, distributed tracing, and service defaults for .NET Aspire apps.

Implementation Status

CoreIdent 1.0 — Production-ready OAuth/OIDC foundation for .NET 10+

Complete OAuth 2.0 / OIDC: Token endpoint, authorization code + PKCE, discovery, JWKS, revocation, introspection
Complete Passwordless: Email magic links, passkeys/WebAuthn, SMS OTP
Complete Infrastructure: EF Core stores, CLI tool, Aspire integration, OpenTelemetry metrics
Next External Providers: Google, Microsoft, GitHub OAuth integration
Next Client Libraries: MAUI, WPF, Blazor authentication clients

View Full Roadmap

Open for Your Contribution

Join the CoreIdent community on GitHub.
NuGet Downloads

Documentation

Start with the Developer Guide (current codebase), then the planning documents for roadmap and intent:

Developer Guide

Practical reference for configuration, endpoints, persistence, and testing.

View

Project Overview

Vision, principles, architecture, and phased roadmap.

View

Technical Plan

Detailed specifications, interfaces, and implementation guidance.

View

Development Plan

Task-level checklist with components, test cases, and docs.

View

View on GitHub