| Features |
Starter
Edition
|
Business
Edition
|
Enterprise
Edition
|
|---|---|---|---|
| Full featured OAuth 2 and certified OpenID Connect server implementation for ASP.NET Core | |||
| Implementation of most OAuth and OpenID Connect specifications and standards | |||
| Number of supported external authentication providers |
unlimited
|
unlimited
|
unlimited
|
| Self-hosting: number of included unique token requestors (i.e. OAuth client IDs or relying parties). Extras allowed for an additional fee. |
5
|
15
|
unlimited
|
| Redistribution: number of included unique token requestors (i.e. OAuth client IDs or relying parties) per deployment. Extras allowed for an additional fee. |
5
|
5
|
5
|
| Redistribution unlimited: number of included unique token requestors (i.e. OAuth client IDs or relying parties) per deployment. Extras allowed for an additional fee. |
unlimited
|
unlimited
|
unlimited
|
| Self-hosting: number of logical deployments |
1
|
1
|
unlimited
|
| Redistribution: number of logical deployments |
unlimited
|
unlimited
|
unlimited
|
| Support for unlimited token consumers (i.e. OAuth scopes) | |||
| Developer Support | |||
| Security notification service | |||
| Built-in support for In-Memory, JSON file and EntityFramework-based configuration stores | |||
| Built-in support for In-Memory and EntityFramework-based operational stores | |||
| Support for RSA, RSA-PSS, EC, and X.509 signing keys | |||
| Rich extensibility model | |||
| Extensive auditing and logging capabilities, including OpenTelemetry support | |||
| Supports arbitrary user login workflows and authentication methods | |||
| Supports same deployment environments as any ASP.NET Core application | |||
| Support for automatic signing key management (rotation, secure storage, and retirement) | |||
| Support for server-side sessions and distributed session coordination | |||
| Support for Pushed Authorization Requests (PAR) | |||
| Support for Dynamic Client Registration (DCR) | |||
| Support for multiple authorities | |||
| Support for resource isolation (Resource Indicators for OAuth 2.0 (RFC 8707)) | |||
| Support for OpenID Connect Client-Initiated Backchannel Authentication (CIBA) | |||
| Support for dynamically loading and updating external authentication provider configuration | |||
| Support for DPoP | |||
|
Starter
Edition
|
Business
Edition
|
Enterprise
Edition
|