I’ve inherited an old project that has an API based on NancyFX. It uses the old Owin OAuth2 middleware:
Combined with the old MembershipReboot system by Brock Allen
The end goal is that the new ServiceStack API will one day replace the NancyFX api. For now though, we want to start on the new API / portal, which requires integrating authentication.
I’m a little confused on what path I should take to integrate the two:
- Should I write a custom SS OAuthProvider to auth through the old service?
- Should I write a custom CredentialsAuthProvider that will handle authentication in ServiceStack using the same password encryption / decryption as the old system (ultimately, in the end, I want SS to handle auth w/ jwt, not the old service).
The first goal is to allow a user to login to the old portal / api, and click a link to be taken to the new, “beta”, portal (passing along tokens).
I did this with my last application, but they used the normal identity server, which SS works fairly well with.