Demoapp
Reference .NET product for the Vancoller hub. Sign in with your Vancoller account, then run the demo.
Not signed in
Sign in with Vancoller to continue.
What this proves
- Sign-in works without demoapp registering its own Google OAuth client — the hub owns the upstream relationship.
- JWT arrives in the URL fragment; the inline script on
/auth-returnPOSTs it to the server and the address bar is scrubbed before the redirect. - Server holds the token in an encrypted (DataProtection) session cookie — no
localStorage, nosessionStorage, no JS access to the JWT. - License check runs server-side via
IVCClientfromVC.Contracts. - License check is rejected for tokens minted for other products (probe protection, enforced by the hub).