Centralised authentication and authorisation service for internal .NET applications — JWT, refresh tokens, role-based access control.
General.Identity is a standalone identity service designed to provide a single authentication and authorisation endpoint for multiple internal .NET applications. Instead of each service managing its own user store and token logic, they delegate to this service — which issues JWT access tokens, manages refresh token rotation, and enforces role-based access control.
- JWT access token issuance — short-lived tokens signed with a configurable secret or certificate
- Refresh token rotation — secure token refresh with invalidation on reuse
- Role-based authorisation (RBAC) — role assignment and claim-based policy enforcement
- Centralised user store — single source of truth for user accounts across internal services
- ASP.NET Core Identity — built on top of the standard Identity infrastructure
| Framework | ASP.NET Core |
| Language | C# |
| Auth | ASP.NET Core Identity, JWT Bearer |
| ORM | Entity Framework Core |
git clone https://github.com/Aerys-cmd/General.Identity.git
cd General.Identity
dotnet restore
dotnet run --project General.IdentityConfigure your connection string and JWT settings in appsettings.json before running.
Consuming services validate tokens against this service's public key / secret. Add the standard
ASP.NET Core JWT Bearer middleware to any downstream service and point Authority or Issuer at
this identity server.