I have (finally) connected the Okta middleware ServiceStack using the NetCoreIdentityAuthProvider. A had a couple questions…

Can I still customize SessionExpiry (I do so per user or user role).
Can I still implement sliding sessions using code found in older versions of SS (in a global response filter for example)

No the NetCoreIdentityAuthProvider is just an adapter converting the ASP .NET Core Authenticated User into a ServiceStack Session, i.e. ServiceStack isn’t managing the Auth itself.

All management about the Authenticated Request, e.g. the lifetime of sessions would be managed by the Authentication Provider and Cookie Lifetime its using.