Clik here to view.
Implement the OAUTH 2.0 Token Exchange delegated flow between an Azure AD API...
This article shows how to implement the OAUTH 2.0 Token Exchange RFC 8693 delegated flow between two APIs, one using Azure AD to authorize the HTTP requests and a second API protected using...
View ArticleClik here to view.
Implementing secure Microsoft Graph application clients in ASP.NET Core
The article looks at the different way a Microsoft Graph application client can be implemented and secured in an ASP.NET Core application or a .NET application. This type of client is intended for...
View ArticleBasic Authentication in ASP.NET Core
This article shows how basic authentication could be implemented in an ASP.NET Core application. This is not the recommended way to implement security for user flows as the password is always sent...
View ArticleClik here to view.
Using multi-tenant AAD delegated APIs from different tenants
This post looks at implementing and using Azure AD multiple tenant applications from different tenants. A service principal needs to be created for the tenant using the multi-tenant API and consent...
View ArticleClik here to view.
Use multiple identity providers from a Blazor WASM ASP.NET Core App secured...
This post shows how to implement a Blazor WASM UI hosted in an ASP.NET Core application using multiple identity providers to authenticate. Two confidential OpenID Connect code flow clients with PKCE...
View ArticleClik here to view.
Using Hangfire with ASP.NET Core
This article looks at setting up Hangfire with ASP.NET Core and an SQL server. Hangfire provides a solution to run recurring jobs and background jobs with an excellent dashboard to monitor the events....
View ArticleClik here to view.
Onboarding users in ASP.NET Core using Azure AD Temporary Access Pass and...
The article looks at onboarding different Azure AD users with a temporary access pass (TAP) and some type of passwordless authentication. An ASP.NET Core application is used to create the Azure AD...
View ArticleClik here to view.
Auto sign-out using ASP.NET Core Razor Pages with Azure AD B2C
This article shows how an ASP.NET Core Razor Page application could implement an automatic sign-out when a user does not use the application for n-minutes. The application is secured using Azure AD...
View ArticleClik here to view.
Use Azure AD Access Packages to onboard users in an Azure DevOps project
This post looks at onboarding users into an Azure DevOps team or project using Azure AD access packages. The Azure AD access packages are part of the Microsoft Entra Identity Governance and provide a...
View ArticleClik here to view.
A first look at Blazor and .NET 8
In this post, Blazor and .NET 8 is used to implement a simple website. I took a .NET 7 project, updated it to .NET 8 and tried out some of the new features in .NET 8. Code:...
View ArticleClik here to view.
Azure AD cross-tenant synchronization
The article looks at and explores the new Azure AD cross-tenant synchronization. The feature makes it really easy to implement the technical part of synchronization between different Azure AD tenants....
View ArticleClik here to view.
Provision Azure IoT Hub devices using DPS and X.509 certificates in ASP.NET Core
This article shows how to provision Azure IoT hub devices using Azure IoT hub device provisioning services (DPS) and ASP.NET Core. The devices are setup using chained certificates created using .NET...
View ArticleClik here to view.
Application security context models
This article looks at a new concept for creating application security context models for modern solutions using best practice security. By using security context models in projects, a qualitative and...
View ArticleClik here to view.
Trust phishing resistant MFA for cross tenant users
This article shows how to force phishing resistant authentication for external B2B users using a cross tenant trust. The external users are from a separate tenant and the local tenant needs to trust...
View ArticleClik here to view.
Use Azure PIM with groups in ASP.NET Core
This article shows how to implement Azure Privileged Identity Management access in an ASP.NET Core application using an Azure security group. An Azure Conditional Access Authentication context is used...
View ArticleClik here to view.
Blazor and CSP
This post looks at the a recent fix for Blazor which I think is of massive importance. You can now develop with Blazor in Visual Studio (Preview) using a strong CSP. Code:...
View ArticleClik here to view.
ASP.NET Core authentication using Microsoft Entra External ID for customers...
This article looks at implementing an ASP.NET Core application which authenticates using Microsoft Entra External ID for customers (CIAM). The ASP.NET Core authentication is implemented using the...
View ArticleClik here to view.
ASP.NET Core authorization using Entra External ID CIAM and Azure AD security...
This article looks at implementing authorization in Microsoft Entra External ID for customers (CIAM) using Azure AD delegated roles. The roles can be assigned to users or groups in an Azure Enterprise...
View ArticleClik here to view.
Reset user account passwords using Microsoft Graph and application...
This article shows how to reset a password for tenant members using a Microsoft Graph application client in ASP.NET Core. An Azure App registration is used to define the application permission for the...
View ArticleClik here to view.
Reset passwords in ASP.NET Core using delegated permissions and Microsoft Graph
This article shows how an administrator can reset passwords for local members of an Azure AD tenant using Microsoft Graph and delegated permissions. An ASP.NET Core application is used to implement...
View Article