Monthly Archives: February 2022

Implementing authorization in Blazor ASP.NET Core applications using Azure AD security groups

February 21, 2022 · by · in .NET Core, ASP.NET Core, Azure, Microsoft Entra ID, OAuth2, Security · 4 Comments

This article shows how to implement authorization in an ASP.NET Core Blazor application using Azure AD security groups as the data source for the authorization definitions. Policies and claims are used in the application which decouples the descriptions from the Azure AD security groups and the application specific authorization requirements. With this setup, it is […]

Problems with online user authentication when using self sovereign identity

February 14, 2022 · by · in blockchain, OAuth2, Security, Self Sovereign Identity · 2 Comments

Using self sovereign identity (SSI), there is no standardized solutions for solving online user authentication when using verifiable credentials and verifying the identity and user. All solutions result in further compromises and result in new problems. To understand the problems, we need to understand how this works. The following diagram shows the verifiable credential (VC) […]

Using Blazor with a YARP downstream API protected using certificate authentication

February 7, 2022 · by · in .NET, .NET Core, App Service, ASP.NET Core · 2 Comments

This article shows how to use a downstream API protected with certificate authentication using Microsoft YARP reverse proxy from a Blazor application. The Blazor WASM HTTP requests are sent to a secured backend which uses YARP to forward the requests to the API protected with the certificate authentication. The Blazor application authenticates using the OpenIddict […]