Tag Archives: dotnet

Reset user account passwords using Microsoft Graph and application permissions in ASP.NET Core

June 12, 2023 · by · in .NET, .NET Core, ASP.NET Core, Azure, Microsoft Entra ID · 2 Comments

This article shows how to reset a password for tenant members using a Microsoft Graph application client in ASP.NET Core. An Azure App registration is used to define the application permission for the Microsoft Graph client and the User Administrator role is assigned to the Azure Enterprise application created from the Azure App registration. Code: […]

ASP.NET Core authorization using Entra External ID CIAM and Azure AD security groups

June 5, 2023 · by · in ASP.NET Core, Azure, Entra CIAM, Microsoft Entra ID · 3 Comments

This article looks at implementing authorization in Microsoft Entra External ID for customers (CIAM) using Azure AD delegated roles. The roles can be assigned to users or groups in an Azure Enterprise application. Code: https://github.com/damienbod/EntraExternalIdCiam Blogs in this series In Azure AD it has been possible to use roles with users and groups to implement […]

ASP.NET Core authentication using Microsoft Entra External ID for customers (CIAM)

May 30, 2023 · by · in ASP.NET Core, Azure, Entra CIAM, Microsoft Entra ID · 4 Comments

This article looks at implementing an ASP.NET Core application which authenticates using Microsoft Entra External ID for customers (CIAM). The ASP.NET Core authentication is implemented using the Microsoft.Identity.Web Nuget package. The client implements the OpenID Connect code flow with PKCE and a confidential client. Code: https://github.com/damienbod/EntraExternalIdCiam Posts in this series Microsoft Entra External ID for […]

Blazor and CSP

May 22, 2023 · by · in .NET, .NET Core, ASP.NET Core, Azure, Microsoft Entra ID · 6 Comments

This post looks at the a recent fix for Blazor which I think is of massive importance. You can now develop with Blazor in Visual Studio using a strong CSP. Code: https://github.com/damienbod/Hostedblazor8Aad History When developing applications, the development environment should be as close as possible to the target production deployment. As a rule, the more […]

Trust phishing resistant MFA for cross tenant users

May 8, 2023 · by · in .NET Core, ASP.NET Core, OAuth2, Security, Web · 3 Comments

This article shows how to force phishing resistant authentication for external B2B users using a cross tenant trust. The external users are from a separate tenant and the local tenant needs to trust the multiple factor authentication (MFA) from the other known tenants. This prevents the user having to authenticate again and setup more MFA. […]

Provision Azure IoT Hub devices using DPS and X.509 certificates in ASP.NET Core

April 17, 2023 · by · in .NET, .NET Core, ASP.NET Core, Azure, dotnet, Microsoft Entra ID, OAuth2 · 2 Comments

This article shows how to provision Azure IoT hub devices using Azure IoT hub device provisioning services (DPS) and ASP.NET Core. The devices are setup using chained certificates created using .NET Core and managed in the web application. The data is persisted in a database using EF Core and the certificates are generated using the […]

Using Hangfire with ASP.NET Core

February 20, 2023 · by · in .NET, .NET Core, ASP.NET Core, Uncategorized · 5 Comments

This article looks at setting up Hangfire with ASP.NET Core and an SQL server. Hangfire provides a solution to run recurring jobs and background jobs with an excellent dashboard to monitor the events. Code: https://github.com/damienbod/AspNetCoreHangfire History 2023-02-21 Fix Delete background job to delete recurring job, feedback from Alex The ASP.NET Core application uses two Hangfire […]

Use multiple identity providers from a Blazor WASM ASP.NET Core App secured using BFF

February 14, 2023 · by · in .NET, ASP.NET Core, dotnet, OAuth2, Security, Web · 7 Comments

This post shows how to implement a Blazor WASM UI hosted in an ASP.NET Core application using multiple identity providers to authenticate. Two confidential OpenID Connect code flow clients with PKCE are used to implement the Blazor authentication. The Blazor WASM and the ASP.NET Core application are a single security context. This is implemented using […]

Sharing Microsoft Graph permissions and solution Azure App Registrations

November 28, 2022 · by · in App Service, ASP.NET Core, Azure, Microsoft Entra ID · 2 Comments

This article looks at using Microsoft Graph permissions in Azure App registrations and whether you should use Graph in specific Azure App registrations types and if it is ok to expose these with other scopes and roles. Is it ok to expose Graph permissions in public Azure App registrations? Using Graph with public applications As […]

Switch tenants in an ASP.NET Core app using Azure AD with multi tenants

October 31, 2022 · by · in .NET, .NET Core, App Service, ASP.NET Core, Azure, dotnet, Microsoft Entra ID, OAuth2 · 5 Comments

This article shows how to switch between tenants in an ASP.NET Core multi-tenant application using a multi-tenant Azure App registration to implement the identity provider. Azure roles are added to the Azure App registration and this can be used in the separate enterprise applications created from the multi-tenant Azure App registration to assign users and […]

Older posts Newer posts