Category .NET

ASP.NET Core user delegated access token management

January 15, 2025 · by · in .NET Core, ASP.NET Core, dotnet · 3 Comments

The article looks at managing user delegated access tokens for a downstream API in an ASP.NET Core web application. There are many ways of implementing this, all with advantages and disadvantages. The tokens are requested from an OpenID Connect server using the recommended standards. In this blog, the UI access token from the application authentication […]

Using Entra External ID with an Auth0 OpenID Connect identity provider

December 9, 2024 · by · in ASP.NET Core, Microsoft Entra External ID, Microsoft Entra ID, OAuth2, Security · Leave a comment

This post looks at implementing an Open ID Connect identity provider in Microsoft Entra External ID. Auth0 is used as the identity provider and an ASP.NET Core application is used to test the authentication. Microsoft Entra External ID federates to Auth0. Client code: https://github.com/damienbod/EntraExternalIdCiam Microsoft Entra External ID supports federation using OpenID Connect and was […]

ASP.NET Core and Angular BFF using a YARP downstream API protected using certificate authentication

November 4, 2024 · by · in angular, ASP.NET Core, Azure, javascript, Microsoft Entra ID, OAuth2, Security · Leave a comment

This article demonstrates how to implement a downstream API protected by certificate authentication using Microsoft YARP reverse proxy in an ASP.NET Core web application. The application uses Angular for its UI and secures both the UI and the ASP.NET Core backend through a backend-for-frontend security architecture. The downstream API is secured with certificate authentication and […]

Implement security headers for an ASP.NET Core API supporting OpenAPI Swagger UI

October 21, 2024 · by · in .NET, .NET Core, ASP.NET Core, Security, Web · Leave a comment

This article shows how to implement security headers for an application supporting an API and a swagger UI created from a open API in .NET 9. The security headers are implemented using the NetEscapades.AspNetCore.SecurityHeaders Nuget packages from Andrew Lock. Code: https://github.com/damienbod/WebApiOpenApi Deploying a web application which supports both an API and a UI have different […]

Microsoft Entra ID App-to-App security architecture

October 7, 2024 · by · in .NET Core, App Service, ASP.NET Core, Azure, Azure Key Vault, Microsoft Entra ID · 4 Comments

This article looks at the different setups when using App-to-App security with Microsoft Entra ID (OAuth client credentials). Microsoft Entra App registrations are used to configure the OAuth clients and resources. For each tenant, an Enterprise application is created for the client App registration when the consent is granted. The claims in the access token […]

Implement a Geo-distance search using .NET Aspire, Elasticsearch and ASP.NET Core

September 23, 2024 · by · in .NET, .NET Core, ASP.NET Core, Docker, Elasticsearch, MVC, Web · 1 Comment

This article shows how to implement a geo location search in an ASP.NET Core application using a LeafletJs map. The selected location can be used to find the nearest location with an Elasticsearch Geo-distance query. The Elasticsearch container and the ASP.NET Core UI application are setup for development using .NET Aspire. Code: https://github.com/damienbod/WebGeoElasticsearch Setup For […]

Using Elasticsearch with .NET Aspire

September 16, 2024 · by · in .NET Core, ASP.NET Core, Elasticsearch · 3 Comments

This post shows how to use Elasticsearch in .NET Aspire. Elasticsearch is setup to use HTTPS with the dotnet developer certificates and and simple client can be implemented to query the data. Code: https://github.com/damienbod/keycloak-backchannel Setup Two services are setup to run in .NET Aspire. The first service is the official Elasticsearch docker container and deployed […]

Implement OpenID Connect Back-Channel Logout using ASP.NET Core, Keycloak and .NET Aspire

September 9, 2024 · by · in ASP.NET Core, dotnet, OAuth2, Security · 1 Comment

This post shows how to implement an OpenID Connect back-channel logout using Keycloak, ASP.NET Core and .NET Aspire. The Keycloak and the Redis cache are run as containers using .NET Aspire. Two ASP.NET Core UI applications are used to demonstrate the server logout. Code: https://github.com/damienbod/keycloak-backchannel Setup The applications are run and tested using .NET Aspire. […]

Implement ASP.NET Core OpenID Connect OAuth PAR client with Keycloak using .NET Aspire

September 2, 2024 · by · in .NET Core, ASP.NET Core, MVC, OAuth2, Security, Web · 1 Comment

This post shows how to implement an ASP.NET Core application which uses OpenID Connect and OAuth PAR for authentication. The client application uses Keycloak as the identity provider. The Keycloak application is hosted in a docker container. The applications are run locally using .NET Aspire. This makes it really easy to develop using containers. Code: […]

Add a Swagger UI using a .NET 9 Json OpenAPI file

August 12, 2024 · by · in .NET, ASP.NET Core, OAuth2, Security · 1 Comment

This post shows how to implement a Swagger UI using a .NET 9 produced OpenAPI file. The Swagger UI is deployed to a secure or development environment and is not deployed to a public production target. Sometimes, it is required to deploy the Swagger UI to a development deployment target and not the test or […]

Older posts Newer posts