What is Active Login?
Active Login is an Open Source project built on .NET Standard that makes it easy to integrate with leading Swedish authentication services like BankID.
It also provide examples of how to use it with the popular OpenID Connect & OAuth 2.0 Framework IdentityServer and provides a template for hosting the solution in Microsoft Azure. In addition, Active Login also contain convenient modules that help you work with and handle validation of Swedish Personal Identity Number.
The source for Active Login is available on Github and is licensed under the very permissive MIT license for you to be able to use it in commercial or non-commercial applications without many restrictions.
Easy To Use
You can be up and running by writing only few lines of code.
.AddBankId() and you are one step closer to use BankID in you web application!
With an enforcement date of May 25, 2018, the GDPR is designed to unify data privacy requirements across the European Union (EU). Active Login was built with GDPR in mind and has privacy by design.
Active Login was built with Microsoft Azure in mind. While you are not required to use it, the Azure extensions will make you even more secure and the ARM template will get you started quicker than ever.
All of the user interaction is localized into both Swedish and English, with the ability to add more languages.
Active Login targets .NET Standard so that you can use it on all the major platforms including macOS, Linux and Windows.
By using Razor Class Libraries introduced in ASP.NET Core 2.1 Active Login provides an pre-built UI that you can extend and customize.
Parsing and validation of Swedish identities such as Personal Identity Number (svenskt personnummer) is separated into standalone packages so that you can use it without the need of BankID.
In addition to native BankID, we support GrandID from Svensk e-identitet. GrandID is really easy to get started with and is available with predefined UI and is configured using
.AddGrandId() in your startup!
Active Login can be used for direct application integration where your application directly references the packages you want to use. For example using BankIdApiClient to authenticate users of the application directly against BankID. Active Login will abstract the details of the BankID authentication/signing, error handling and makes it easy to start and control the authentication flow from your own application code. Although comprehensive samples are available for using Active Login with ASP.NET Core MVC, the core libraries and API clients are not tied to ASP.NET Core but can be used from all platforms that implements .NET Standard 2.0.
A common and often more suitable scenario is to handle all external authentication through a Federation Gateway. The Federation Gateway will act as a single Security Token Service (STS) for all applications that wants to use external authentication services. This makes it possible to use standard protocols like OpenID Connect and OAuth for all dependent applications and gives a greater flexibility to the solution. Active Login has a comprehensive sample of how to use IdentityServer as the Federation Gateway. IdentityServer runs on .NET Core and is one of the most popular and mature Open Source products for handling these kind of scenarios.
Direct Application Integration
Federation Gateway Scenario
Support & Training
A company or organization's own system development department faces many different challenges, which can not always be solved on their own. There are various reasons for taking in help. This can be due, for example, to difficulties in finding the right skills or for over time becoming too costly to keep up with your own staff.
Active Solution, the main contributor to Active Login, are doing consulting, training and mentoring around web based authentication in general with a focus on BankID with Active Login.
Please contact us do discuss how we can help.