finds.dev← search

// the find

aspnet-contrib/AspNet.Security.OAuth.Providers

★ 2,509 · C# · Apache-2.0 · updated Jul 2026

OAuth 2.0 social authentication providers for ASP.NET Core

A collection of OAuth 2.0 authentication middleware for ASP.NET Core covering 80+ providers — GitHub, Discord, Apple, Keycloak, and dozens more. It's the go-to package when you need social login in a .NET app and don't want to hand-roll each provider's quirks. The maintainers themselves now recommend migrating to OpenIddict for new projects, which is an honest and unusual thing to say in your own README.

Each provider ships as its own NuGet package so you only take what you need. The Apple provider is notably complete — it handles the JWT client secret generation, ID token validation, and the email-hiding flow that trips up most DIY implementations. The codebase uses source generators and a consistent handler pattern across all providers, so reading one handler teaches you all of them. CI runs integration tests against the real OAuth endpoints using recorded HTTP interactions, which is how you actually catch provider API drift.

The project is in maintenance mode — the README steers you toward OpenIddict, and several providers have known issues that accumulate in the issue tracker without fixes. OAuth 2.0 code flow only: no refresh token grant, no client credentials, no token introspection. If your provider changes its user info endpoint shape, your claims silently stop populating — there's no schema validation or diagnostic output to tell you what broke. The Gitter support channel is a dead link at this point.

View on GitHub →

// want more like this?

We dig through GitHub every week and send a few repos picked for what you actually care about — each with an honest take like this one.

Get finds in your inbox → Search again →