Clik here to view.
Encrypting texts for an Identity in ASP.NET Core Razor Pages using AES and RSA
The article shows how encrypted texts can be created for specific users in an ASP.NET Core Razor page application. Symmetric encryption is used to encrypt the text or the payload. Asymmetric encryption...
View ArticleClik here to view.
Using Digital Signatures to check integrity of cipher texts in ASP.NET Core...
This post shows how digital signatures can be implemented to check the integrity of cipher texts in ASP.NET Core Razor Pages. The cipher texts are encrypted with AES symmetric encryption and the key...
View ArticleClik here to view.
Securing Azure Functions using certificate authentication
This article shows how to secure Azure Functions using X509 certificates. The client is required to send a specific certificate to access the Azure Function. Code:...
View ArticleClik here to view.
Securing Azure Functions using an Azure Virtual Network
In this post, an Azure Function is deployed in a Azure Virtual Network and the access to the Azure Function is restricted so that it cannot be reach from the Internet. Only Applications deployed in the...
View ArticleClik here to view.
Securing Azure Key Vault inside a VNET and using from an Azure Function
This post shows how an Azure Key Vault can be protected inside an Azure virtual network. The deployment is setup so that only applications in the same VNET can access the Key Vault. To implement this,...
View ArticleClik here to view.
Securing Azure Functions using Azure AD JWT Bearer token authentication for...
This post shows how to implement OAuth security for an Azure Function using user-access JWT Bearer tokens created using Azure AD and App registrations. A client web application implemented in ASP.NET...
View ArticleClik here to view.
Implement Azure AD Client credentials flow using Client Certificates for...
This post shows how to implement an Azure client credential flows to access an API for a service-to-service connection. No user is involved in this flow. A client certificate (Private Key JWT...
View ArticleClik here to view.
Using Key Vault certificates with Microsoft.Identity.Web and ASP.NET Core...
This post shows how Azure Key Vault certificates can be used with Microsoft.Identity.Web in an ASP.NET Core application which requires a downstream “access_as_user” API. The Azure AD App Registrations...
View ArticleClik here to view.
Implement a full text search using Azure Cognitive Search in ASP.NET Core
This article shows how to implement a full text search in ASP.NET Core using Azure Cognitive Search. The search results are returned using paging and the search index can be created, deleted from an...
View ArticleClik here to view.
Using encrypted access tokens in Azure with Microsoft.Identity.Web and Azure...
This post shows how to use encrypted access tokens with Azure AD App registrations using Microsoft.Identity.Web. By using encrypted access tokens, only applications with access to the private key can...
View ArticleClik here to view.
Using Azure Cognitive Search Suggesters in ASP.NET Core and Autocomplete
This post shows how to implement an autocomplete in an ASP.NET Core Razor Page using Azure Cognitive Search Suggesters. Code: https://github.com/damienbod/AspNetCoreAzureSearch Posts in this series...
View ArticleClik here to view.
Implement a Blazor full text search using Azure Cognitive Search
This article shows how to implement a full text search in Blazor using Azure Cognitive Search. The search results are returned using paging and the search index can be created, deleted from a Blazor...
View ArticleClik here to view.
Implement a Web APP and an ASP.NET Core Secure API using Azure AD which...
This article shows how an ASP.NET Core Web application can authenticate and access a downstream API using user access tokens and delegate to another API in Azure AD also using user access tokens....
View ArticleClik here to view.
Using Microsoft Graph API in ASP.NET Core
This post shows how Microsoft Graph API can be used in both ASP.NET Core UI web applications and also ASP.NET Core APIs for delegated identity flows. The ASP.NET Core applications are secured using...
View ArticleClik here to view.
Securing an ASP.NET Core API which uses multiple access tokens
This post shows how an ASP.NET Core API can authorize API calls which use different access tokens from different identity providers or different access tokens from the same identity provider but...
View ArticleClik here to view.
Using multiple APIs in Angular and ASP.NET Core with Azure AD authentication
This article shows how an Angular application could be used to access many APIs in a secure way. An API is created specifically for the Angular UI and the further APIs can only be access from the...
View ArticleClik here to view.
Using multiple APIs in Blazor with Azure AD authentication
The post shows how to create a Blazor application which is hosted in an ASP.NET Core application and provides a public API which uses multiple downstream APIs. Both the Blazor client and the Blazor API...
View ArticleClik here to view.
Azure AD Access Token Lifetime Policy Management in ASP.NET Core
This article shows how the lifespan of access tokens can be set and managed in Azure AD using ASP.NET Core Razor pages with Microsoft Graph API and token lifetime policies. A TokenLifetimePolicy can be...
View ArticleClik here to view.
Protecting legacy APIs with an ASP.NET Core Yarp reverse proxy and Azure AD...
This article shows how a legacy API could be protected using an ASP.NET Core Yarp reverse proxy and Azure AD OAuth. The security is implemented using Azure AD and Microsoft.Identity.Web. Sometimes it...
View ArticleClik here to view.
Using ASP.NET Core Controllers and Razor Pages from a separate shared project...
This post shows how to use shared projects or shared assemblies for ASP.NET Core API Controllers or ASP.NET Core Razor Pages. Sometimes shared logic for different ASP.NET Web API or Web App projects...
View Article