1.0.0 Project initialization REST API with simple authentication and authorization mechanism by two routes: /authenticate and /authorize. A client/consumer can do only two things: - Authentication: An user name and a password are required in the request body. The request type is POST. The output is an object with the following structure: { token: { raw: "***", validFrom: "", validUntil: "" }, status: "SUCCESS" } - Authorization: The request type is also POST and and its scope is to authorize a token. The input is just the token in string format: { token: "***" } For .NET consumers there are two nuget packages developed to facilitate the integration with this identity server: - IdentityServer.PublishedLanguage: It contains constants and classes for data transfer objects. - IdentityServer.Wrapper: It compose and executes all the REST requests to the identity server and offers to a consumer a simple interface with all methods. This interface can be injected with dependency injection at consumer startup with UseIdentityServices method. The only input is the server base address. - The source of this nugets is public, but on my personal server: https://toodle.ddns.net/public-nuget-server/nuget 1.0.1 ◾ Hard changes in token structure. Now the token format is base64 and contains a json with all user data like username, first name, last name, profile picture url, email address and a list of claims that can be configured from the database for each user independently. ◾ The generation and validation mechanism for the token has been rewritten to meet the new token structure. ◾ The complexity of user information has grown a lot. All users have now besides the data from token other information such as statuses, failed login attempts, last login date, password change date and security stamp. ◾ All tokens are persisted in the database and the active ones are reload at a server failure or in case of a restart. 1.1.0 ◾ Upgrade all projects to .NET 5 ◾ Upgrade packages MicrosoftExtensions, AutoMapper, EntityFramework, NDB