Andrew Lock | .NET Escapades

Andrew Lock
Auth

  1. Resource-based authorisation in ASP.NET Core

    In this next post on authorisation in ASP.NET Core, we look at how you can secure resources based on properties of that resource itself. In a previous post, we saw how you could create a policy that protects a resource based on properties of the user trying to access…
    on ASP.NET Core Auth Security - Comments

  2. Modifying the UI based on user authorisation in ASP.NET Core

    This post is the next in the series on authentication and authorisation in ASP.NET Core. It shows how to modify the UI you present based on the authorisation level of the current user. This allows you to hide links to pages the user is not authorised to access, for…
    on ASP.NET Core Security Auth Front End - Comments

  3. Custom authorisation policies and requirements in ASP.NET Core

    This post is the next in a series of posts on the authentication and authorisation infrastructure in ASP.NET Core . In the previous post we showed the basic framework for authorisation in ASP.NET Core i.e. restricting access to parts of your application depending on the current authenticated user.…
    on ASP.NET Core Auth Security - Comments

  4. Introduction to Authorisation in ASP.NET Core

    This is the next in series of posts about authentication and authorisation in ASP.NET Core. In the first post we introduced authentication in ASP.NET Core at a high level, introducing the concept of claims-based authentication. In the next two post, we looked in greater depth at the Cookie…
    on ASP.NET Core Security Auth - Comments

  5. An introduction to OpenID Connect in ASP.NET Core

    This post is the next in a series of posts on authentication in ASP.NET Core. In the previous post we showed how you can use the OAuth 2.0 protocol to provide 'Login via Facebook' functionality to your website. While a common approach, there are a number of issues…
    on ASP.NET Core Auth Security - Comments

  6. An introduction to OAuth 2.0 using Facebook in ASP.NET Core

    This is the next post in a series on authentication and authorisation in ASP.NET Core. In this post I look in moderate depth at the OAuth 2.0 protocol as it pertains to ASP.NET Core applications, walking through the protocol as seen by the user of your website…
    on ASP.NET Core Security Auth - Comments