IdentityServer4 configuration

Clients.cs

public class Clients
{
    public static IEnumerable<Client> All => new[]
    {
        new Client()
        {
            AccessTokenType = AccessTokenType.Jwt,
            ClientId = "9c328f06-01c7-4429-9870-7e55a73e2870",
            RedirectUris = new List<string>
            {
                "http://localhost:24042/auth_callback"
            },
            ClientUri = "http://localhost:24042/",
            AllowedCorsOrigins = new List<string>
            {
                "http://localhost:24042/"
            },
            AllowedGrantTypes = GrantTypes.Implicit,
            AllowAccessTokensViaBrowser = true,
            AllowedScopes = new[] { "stories.read", "stories.write", "openid", "profile" }
        }
    };
}

Scopes.cs

public class Scopes
{
    public static IEnumerable<Scope> All => new[]
    {
        // These two standard scopes are required for users to be able
        // to logon to your application.
        StandardScopes.OpenId,
        StandardScopes.Profile,
        
        // These two scopes are custom. You can define as many
        // as you want and name them whatever you like.
        new Scope 
        { 
            Description = "Find stories of you and other users", 
            Name = "stories.read", 
            DisplayName = "Read stories" 
        },
        new Scope 
        { 
            Description = "Manage your own story", 
            Name = "stories.write",
            DisplayName = "Write stories"
        }
    };
}

Startup.cs

public class Startup
{
    /// <summary>
    /// Gets invokes to setup the services for your web application
    /// </summary>
    /// <param name="services"></param>
    public void ConfigureServices(IServiceCollection services)
    {
        // This bit of configuration ensures that your authorization
        // API is available to browser clients coming from another
        // domain.
        services.AddCors(options =>
        {
            options.AddPolicy("DefaultCorsPolicy", builder =>
            {
                builder.AllowAnyHeader();
                builder.AllowAnyMethod();
                builder.AllowAnyOrigin();
            });
        });
        
        // This configures the identityserver services
        // Please use a proper signing credential such as a certificate
        // in production. This setup however is pretty useful for development.
        services.AddIdentityServer()
            .AddTemporarySigningCredential()
            .AddInMemoryScopes(Scopes.All)
            .AddInMemoryUsers(Users.All)
            .AddInMemoryClients(Clients.All);
    }

    /// <summary>
    /// Configures the request pipeline for the application
    /// </summary>
    /// <param name="app"></param>
    /// <param name="env"></param>
    /// <param name="loggerFactory"></param>
    public void Configure(IApplicationBuilder app, IHostingEnvironment env, 
                          ILoggerFactory loggerFactory)
    {
        loggerFactory.AddConsole();

        if (env.IsDevelopment())
        {
            app.UseDeveloperExceptionPage();
        }

        app.UseCors("DefaultCorsPolicy");
        
        // Hook up the identity server middleware and you're up and going :-)
        app.UseIdentityServer();
    }
}

Users.cs

public class Users
{
    public static List<InMemoryUser> All => new List<InMemoryUser>
    {
        new InMemoryUser
        {
            Username = "admin",
            Password = "SomePassword1",
            Subject = "admin@localhost"
        }
    };
}