Morioh
Login
Milan Reilly

Milan Reilly

2 years ago

This article shows how an Angular application could be used to access many APIs in a secure way. An API is created specifically for the Angular UI and the further APIs can only be access from the trusted backend which is under our control.

Code: https://github.com/damienbod/AzureADAuthRazorUiServiceApiCertificate

Setup

The applications are setup so that the Angular application only accesses a single API which was created specifically for the UI. All other APIs are deployed in a trusted zone and require a secret or a certificate to use the service. With this, only a single access token leaves the secure zone and there is no need to handle multiple tokens in an unsecure browser. Secondly the API calls can be optimized so that the network loads which come with so many SPAs can be improved. The API is our gateway to the data required by the UI.

#angular #aspnet5 #azure ad #graph api #dotnet #aspdotnet

Using multiple APIs in Angular and ASP.NET Core with Azure AD authentication

damienbod.com

Using multiple APIs in Angular and ASP.NET Core with Azure AD authentication

Using multiple APIs in Angular and ASP.NET Core with Azure AD authentication. This article shows how an Angular application could be used to access many APIs in a secure way. An API is created specifically for the Angular UI and the further APIs can only be access from the trusted backend.

1.65 GEEK