= Identity Server 4 =

[[http://docs.identityserver.io/en/latest/|Website]] for IdentityServer4.

OAuth2 is a protocol that allows applications to request access tokens from a security token service and use them to communicate with APIs.
OpenID Connect is an authentication protocol 

== Authentication ==

{{{
             User Credentials
Application -----------------> WebApp with IdentityServer4 Middleware
            <----------------

Authentication relies on OpenID Connect (or SAML2p - most popular or WS-Federation which is quite old now)

The IdentityServer4 hosting application can be as complex as you want, but we typically recommend to keep the attack surface as small as possible by including authentication related UI only.
{{http://docs.identityserver.io/en/latest/_images/middleware.png}}