// the find
aspnet-contrib/AspNet.Security.OAuth.Providers
OAuth 2.0 social authentication providers for ASP.NET Core
A collection of OAuth 2.0 authentication middleware for ASP.NET Core covering 80+ providers — GitHub, Discord, Apple, Keycloak, and dozens more. It's the go-to package when you need social login in a .NET app and don't want to hand-roll each provider's quirks. The maintainers themselves now recommend migrating to OpenIddict for new projects, which is an honest and unusual thing to say in your own README.
Each provider ships as its own NuGet package so you only take what you need. The Apple provider is notably complete — it handles the JWT client secret generation, ID token validation, and the email-hiding flow that trips up most DIY implementations. The codebase uses source generators and a consistent handler pattern across all providers, so reading one handler teaches you all of them. CI runs integration tests against the real OAuth endpoints using recorded HTTP interactions, which is how you actually catch provider API drift.
The project is in maintenance mode — the README steers you toward OpenIddict, and several providers have known issues that accumulate in the issue tracker without fixes. OAuth 2.0 code flow only: no refresh token grant, no client credentials, no token introspection. If your provider changes its user info endpoint shape, your claims silently stop populating — there's no schema validation or diagnostic output to tell you what broke. The Gitter support channel is a dead link at this point.