Clik here to view.
Implement OAUTH Device Code Flow with Azure AD and ASP.NET Core
The post shows how the Device Code flow (RFC 8628) could be implemented in an ASP.NET Core web application which uses Azure AD as an identity provider. An Azure App registration is used to setup the...
View ArticleClik here to view.
Implement app roles authorization with Azure AD and ASP.NET Core
This post shows how to implement Azure AD App roles and applied to users or groups in Azure AD. The roles are used in an ASP.NET Core Razor page application as well as a ASP.NET Core API. The roles...
View ArticleClik here to view.
Secure Azure AD User File Upload with Azure AD Storage and ASP.NET Core
This post shows how files can be uploaded to Azure blob storage using ASP.NET Core in a secure way using OAuth and Open ID Connect. Azure AD is used to authenticate the users. The uploaded file...
View ArticleClik here to view.
Adding ASP.NET Core authorization for an Azure Blob Storage and Azure AD...
This post shows how authorization can be implemented for Azure Storage Blob containers in an ASP.NET Core web application. The two roles Storage Blob Data Contributor and Storage Blob Data Reader are...
View ArticleClik here to view.
Require user password verification with ASP.NET Core Identity to access Razor...
This post shows how an ASP.NET Core application which uses ASP.NET Core Identity to authenticate and authorize users of the application can be used to require user password verification to view...
View ArticleClik here to view.
Implementing OAuth Pushed Authorisation Requests in Angular
This posts shows how an Angular application can be secured using Open ID Connect code flow with PKCE and OAuth Pushed Authorisation Requests using node-oidc-provider as the identity provider. This...
View ArticleClik here to view.
Using Azure AD groups authorization in ASP.NET Core for an Azure Blob Storage
This post show how Azure AD groups could be used to implement authorization for an Azure Blob storage and used in an ASP.NET Core Razor page application to authorize the identities. The groups are...
View ArticleClik here to view.
Securing Blazor Web assembly using cookies
The article shows how a Blazor web assembly UI hosted in an ASP.NET Core application can be secured using cookies. Azure AD is used as the identity provider and the Microsoft.Identity.Web Nuget package...
View ArticleClik here to view.
The authentication pyramid
This article looks at the authentication pyramid for signing into different applications. I only compare flows which have user interaction and only compare the 2FA, MFA differences. A lot of incorrect...
View ArticleClik here to view.
Setting dynamic Metadata for Blazor Web assembly
This post shows how HTML header meta data can be dynamically updated or changed for a Blazor Web assembly application routes hosted in ASP.NET Core. This can be usually for changing how URL link...
View ArticleGetting started with Self Sovereign Identity SSI
The blog is my getting started with Self Sovereign identity. I plan to explore developing solutions using Self Sovereign Identities, the different services and evaluate some of the user cases in the...
View ArticleClik here to view.
Creating Verifiable credentials in ASP.NET Core for decentralized identities...
This article shows how verifiable credentials can be created in ASP.NET Core for decentralized identities using the Trinsic platform which is a Self-sovereign identity implementation with APIs to...
View ArticleClik here to view.
Securing Blazor Web assembly using Cookies and Auth0
The article shows how an ASP.NET Core Blazor web assembly UI hosted in an ASP.NET Core application can be secured using cookies. Auth0 is used as the identity provider. The trusted application is...
View ArticleClik here to view.
Securing multiple Auth0 APIs in ASP.NET Core using OAuth Bearer tokens
This article shows a strategy for security multiple APIs which have different authorization requirements but the tokens are issued by the same authority. Auth0 is used as the identity provider. A user...
View ArticleClik here to view.
Securing an ASP.NET Core app and web API using windows authentication
This post shows how an ASP.NET Core Web API and an ASP.NET Core Razor page application can be implemented to use windows authentication. The Razor page application uses Javascript to display an...
View ArticleClik here to view.
Create an OIDC credential Issuer with Mattr and ASP.NET Core
This article shows how to create and issue verifiable credentials using Mattr and an ASP.NET Core. The ASP.NET Core application allows an admin user to create an OIDC credential issuer using the Mattr...
View ArticleClik here to view.
Present and Verify Verifiable Credentials in ASP.NET Core using Decentralized...
This article shows how use verifiable credentials stored on a digital wallet to verify a digital identity and use in an application. For this to work, a trust needs to exist between the verifiable...
View ArticleClik here to view.
Securing OAuth Bearer tokens from multiple Identity Providers in an ASP.NET...
This article shows how to secure and use different APIs in an ASP.NET Core API which support OAuth access tokens from multiple identity providers. Access tokens from Azure AD and from Auth0 can be be...
View ArticleClik here to view.
Secure an Angular SPA and an ASP.NET Core API using Auth0
This article shows how to implement an Angular single page application with an ASP.NET Core API and secured using the Open ID Connect code flow with PKCE and OAuth JWT Bearer tokens to protect the...
View ArticleClik here to view.
Verify vaccination data using Zero Knowledge Proofs with ASP.NET Core and MATTR
This article shows how Zero Knowledge Proofs ZKP verifiable credentials can be used to verify a persons vaccination data implemented in ASP.NET Core and MATTR. The ZKP BBS+ verifiable credentials are...
View Article