Tag Archives: OAuth2

Secure ASP.NET Core GRPC API hosted in a Linux kestrel Azure App Service

August 29, 2022 · by · in .NET, .NET Core, App Service, ASP.NET Core, Azure, Microsoft Entra ID · 5 Comments

This article shows how to implement a secure GRPC API service implemented in ASP.NET Core and hosted on an Azure App Service using Linux and kestrel. An application Azure App registration is used to implement the security together with Microsoft.Identity.Web. A client credentials flow is used to acquire an application access token and the GRPC […]

Add Fido2 MFA to an OpenIddict identity provider using ASP.NET Core Identity

July 4, 2022 · by · in .NET, .NET Core, ASP.NET Core, OAuth2, Security, Web · 5 Comments

This article shows how to add Fido2 multi-factor authentication to an OpenID Connect identity provider using OpenIddict and ASP.NET Core Identity. OpenIddict implements the OpenID Connect standards and ASP.NET Core Identity is used for the user accounting and persistence of the identities. Code: https://github.com/damienbod/AspNetCoreOpeniddict I began by creating an OpenIddict web application using ASP.NET Core […]

Implementing OAuth2 APP to APP security using Azure AD from a Web APP

March 28, 2022 · by · in .NET Core, ASP.NET Core, Azure, Microsoft Entra External ID, Microsoft Entra ID, OAuth2, Security · 5 Comments

This article shows how to implement an API service and client in separate ASP.NET Core applications which are secured using Azure application permissions implemented in an Azure App registration. The OAuth client credentials flow is used to get an access token to access the API. Microsoft.Identity.Web is used to implement the client credentials (CC) flow. […]

Create Azure B2C users with Microsoft Graph and ASP.NET Core

March 11, 2022 · by · in .NET Core, ASP.NET Core, Azure, Microsoft Entra External ID, OAuth2, Security · 8 Comments

This article shows how to create different types of Azure B2C users using Microsoft Graph and ASP.NET Core. The users are created using application permissions in an Azure App registration. Code: https://github.com/damienbod/azureb2c-fed-microsoft-entra-id History 2024-01-02 Updated to .NET 8, Graph SDK 5 The Microsoft.Identity.Web Nuget package is used to authenticate the administrator user that can create […]

Implement a PWA using Blazor with BFF security and Azure B2C

January 31, 2022 · by · in .NET Core, App Service, ASP.NET Core, Azure, Microsoft Entra External ID, Microsoft Entra ID, OAuth2, Security · 4 Comments

The article shows how to implement a progressive web application (PWA) using Blazor which is secured using the backend for frontend architecture and Azure B2C as the identity provider. Code https://github.com/damienbod/PwaBlazorBffAzureB2C Setup and challenges with PWAs The application is setup to implement all security in the trusted backend and reduce the security risks of the […]

Comparing the backend for frontend (BFF) security architecture with an SPA UI using a public API

January 10, 2022 · by · in OAuth2, Security · 5 Comments

This article compares the security architecture of an application implemented using a public UI SPA with a trusted API backend and the same solution implemented using the backend for frontend (BFF) security architecture. The main difference is that the first solution is separated into two applications, implemented and deployed as two where as the second […]

Secure a Blazor WASM ASP.NET Core hosted APP using BFF and OpenIddict

January 3, 2022 · by · in .NET, .NET Core, ASP.NET Core, OAuth2, Security, SQLite, Uncategorized · 4 Comments

This article shows how to implement authentication and secure a Blazor WASM application hosted in ASP.NET Core using the backend for frontend (BFF) security architecture to authenticate. All security is implemented in the backend and the Blazor WASM is a view of the ASP.NET Core application, no security is implemented in the public client. The […]

Implement Compound Proof BBS+ verifiable credentials using ASP.NET Core and MATTR

December 13, 2021 · by · in .NET Core, ASP.NET Core, OAuth2, Security, Self Sovereign Identity · 5 Comments

This article shows how Zero Knowledge Proofs BBS+ verifiable credentials can be used to verify credential subject data from two separate verifiable credentials implemented in ASP.NET Core and MATTR. The ZKP BBS+ verifiable credentials are issued and stored on a digital wallet using a Self-Issued Identity Provider (SIOP) and OpenID Connect. A compound proof presentation […]

Blazor WASM hosted in ASP.NET Core templates with Azure B2C and Azure AD authentication using Backend for Frontend (BFF)

December 6, 2021 · by · in .NET, App Service, Azure, dotnet, Microsoft Entra External ID, Microsoft Entra ID · 12 Comments

I have implemented many Blazor WASM ASP.NET Core hosted applications now for both Azure AD and Azure B2C authentication. I always implement security for this type of application now using the Backend for Frontend (BFF) security architecture and can remove the tokens from the client. This is also what I recommend. At present, no Microsoft […]

Creating Microsoft Teams meetings in ASP.NET Core using Microsoft Graph application permissions part 2

October 18, 2021 · by · in ASP.NET Core, OAuth2, Security · 14 Comments

This article shows how to create Microsoft Teams meetings in ASP.NET Core using Microsoft Graph with application permissions. This is useful if you have a designated account to manage or create meetings, send emails or would like to provide a service for users without an office account to create meetings. This is a follow up […]

Older posts Newer posts