Quantcast
Channel: damienbod – Software Engineering
Browsing all 357 articles
Browse latest View live

Image may be NSFW.
Clik here to view.

Using math expressions in github markdown

This blog explores using and creating some standard mathematical expressions using github markdown. I was motivated to try this out after reading this blog. If you know the TEX Commands available in...

View Article


Image may be NSFW.
Clik here to view.

Force MFA in Blazor using Azure AD and Continuous Access

This article shows how to force MFA from your application using Azure AD and a continuous access auth context. When producing software which can be deployed to multiple tenants, instead of hoping IT...

View Article


Image may be NSFW.
Clik here to view.

Add Fido2 MFA to an OpenIddict identity provider using ASP.NET Core Identity

This article shows how to add Fido2 multi-factor authentication to an OpenID Connect identity provider using OpenIddict and ASP.NET Core Identity. OpenIddict implements the OpenID Connect standards...

View Article

Image may be NSFW.
Clik here to view.

Invite external users to Azure AD using Microsoft Graph and ASP.NET Core

This post shows how to invite new Azure AD external guest users and assign the users to Azure AD groups using an ASP.NET Core APP Connector to import or update existing users from an external IAM and...

View Article

Image may be NSFW.
Clik here to view.

Workarounds to disable Azure AD user using Microsoft Graph and an application...

It is not possible to disable an Azure AD user using Microsoft Graph with an application scope and application client. This is only possible using a delegated client. This article explores some of the...

View Article


Image may be NSFW.
Clik here to view.

Debug Logging Microsoft.Identity.Client and the MSAL OAuth client credentials...

This post shows how to add debug logging to the Microsoft.Identity.Client MSAL client which is used to implement an OAuth2 client credentials flow using a client assertion. The client uses the MSAL...

View Article

Image may be NSFW.
Clik here to view.

Creating dotnet solution and project templates

This article should how to create and deploy dotnet templates which can be used from the dotnet CLI or from Visual Studio. Code: https://github.com/damienbod/Blazor.BFF.OpenIDConnect.Template Folder...

View Article

Image may be NSFW.
Clik here to view.

Secure ASP.NET Core GRPC API hosted in a Linux kestrel Azure App Service

This article shows how to implement a secure GRPC API service implemented in ASP.NET Core and hosted on an Azure App Service using Linux and kestrel. An application Azure App registration is used to...

View Article


Image may be NSFW.
Clik here to view.

Implement a GRPC API with OpenIddict and the OAuth client credentials flow

This post shows how to implement a GRPC service implemented in an ASP.NET Core kestrel hosted service. The GRPC service is protected using an access token. The client application uses the OAuth2...

View Article


Image may be NSFW.
Clik here to view.

Setup application client in Azure App Registration with App roles to use a...

In Azure AD, a client application with no user (daemon client) which uses an access token to access an API protected with Microsoft Identity needs to use an Azure API Registration with App Roles....

View Article

Image may be NSFW.
Clik here to view.

ASP.NET Core Api Auth with multiple Identity Providers

This article shows how an ASP.NET Core API can be secured using multiple access tokens from different identity providers. ASP.NET Core schemes and policies can be used to set this up. Code:...

View Article

Image may be NSFW.
Clik here to view.

Implement the On Behalf Of flow between an Azure AD protected API and an API...

This article shows how to implement the On Behalf Of flow between two APIs, one using Azure AD to authorize the HTTP requests and a second API protected using OpenIddict. The Azure AD protected API...

View Article

Image may be NSFW.
Clik here to view.

Force phishing resistant authentication in an ASP.NET Core application using...

This article shows how to force a phishing resistant authentication for an ASP.NET Core application using Azure AD and a conditional access policy which forces a phishing resistant authentication...

View Article


Image may be NSFW.
Clik here to view.

Is scanning QR Codes for authentication safe?

This article explains why cross device authentication has security issues as it is subject to phishing attacks unless further authentication is used in the client. Scanning QR Codes for authentication...

View Article

Image may be NSFW.
Clik here to view.

Switch tenants in an ASP.NET Core app using Azure AD with multi tenants

This article shows how to switch between tenants in an ASP.NET Core multi-tenant application using a multi-tenant Azure App registration to implement the identity provider. Azure roles are added to...

View Article


Image may be NSFW.
Clik here to view.

Create Azure App Registration for API using Powershell

This post shows how to setup an Azure App registration using Powershell for an application access token using an application role. In Azure roles are used for App only, scopes are used for delegated...

View Article

Image may be NSFW.
Clik here to view.

Use multiple Azure AD access tokens in an ASP.NET Core API

This article shows how to setup an ASP.NET Core application to authorize multiple access tokens from different Azure AD App registrations. Each endpoint can only accept a single AAD access token and...

View Article


Image may be NSFW.
Clik here to view.

Sharing Microsoft Graph permissions and solution Azure App Registrations

This article looks at using Microsoft Graph permissions in Azure App registrations and whether you should use Graph in specific Azure App registrations types and if it is ok to expose these with other...

View Article

Image may be NSFW.
Clik here to view.

Implement Feature Management in Blazor ASP.NET Core

The post shows how features toggles or feature switches can be implemented in an ASP.NET Core application using Blazor. The Microsoft.FeatureManagement Nuget package is used to add the feature...

View Article

Image may be NSFW.
Clik here to view.

Azure AD Multi tenant Azure App registration consent

This article looks at Azure Active directory and consent with multi-tenant Azure App registrations. Consent works different depending on the user type, the tenant policies and the required...

View Article
Browsing all 357 articles
Browse latest View live