Aqueduct has types to manage authentication and authorization according to the OAuth 2.0 specification.
You create an
AuthServer service object for your application that manages authentication and authorization logic. An
AuthServer requires a helper object that implements
AuthServerDelegate to handle configuration and required data storage. Most often, this object is a
ManagedAuthDelegate<T> that uses the Aqueduct ORM to manage this storage.
AuthServer service object is injected into
Authorizer controllers that protect access to controller channels. An
AuthServer is also injected into
AuthController to provide HTTP APIs for authentication.
aqueduct auth command-line tool manages configuration - such as client identifier management - for live applications.