IdentityServer #

Extended SSO for Discourse with IdentityServer3

Background In our business we operate a number of customer-facing web services which use an IdentityServer3 identity provider as the single source of identity. We have customised our setup to allow two sources of federated identity, and to pull certain claims from our CRM. We have a new requirement to integrate a hosted instance of the excellent Discourse discussion forum, also using the same single source of identity. Discourse does not support OpenId Connect, rather its own particular form of SSO.

Finding out about Content Security Policy

Had some issues when adding custom fonts to IdentityServer – which is when I found in the docs that by default it implements Content Security Policy Also found some issues with trying to override the builtin Bootstrap with the CDN version… Found this useful reference on CSP and This resource looks useful too – CSP Playground