Require user password verification with ASP.NET Core Identity

This post shows how an ASP.NET Core application which uses ASP.NET Core Identity to authenticate and authorize users of the application can be used to require user password verification to view specific Razor pages in the application.

Protecting legacy APIs with an ASP.NET Core Yarp reverse proxy

Protecting legacy APIs with an ASP.NET Core Yarp reverse proxy and Azure AD OAuth. This article shows how a legacy API could be protected using an ASP.NET Core Yarp reverse proxy and Azure AD OAuth. The security is implemented using Azure AD and Microsoft.Identity.Web.

Using multiple APIs in Angular and ASP.NET Core with Azure AD authentication

Using multiple APIs in Angular and ASP.NET Core with Azure AD authentication. This article shows how an Angular application could be used to access many APIs in a secure way. An API is created specifically for the Angular UI and the further APIs can only be access from the trusted backend.

Secure Azure AD User File Upload with Azure AD Storage and ASP.NET Core

This tutorial shows how files can be uploaded to Azure blob storage using ASP.NET Core in a secure way using OAuth and Open ID Connect. Azure AD is used to authenticate the users. The uploaded file descriptions are saved to an SQL database using EF Core so that listing or searching files can be implemented easily.

Setting Dynamic Metadata for Blazor Web Assembly

Setting Dynamic Metadata for Blazor Web Assembly. This post shows how HTML header meta data can be dynamically updated or changed for a Blazor Web assembly application routes hosted in ASP.NET Core.

Implement a full text search using Azure Cognitive Search in ASP.NET Core

This article shows how to implement a full text search in ASP.NET Core using Azure Cognitive Search. The search results are returned using paging and the search index can be created, deleted from a…

Implement Azure AD Client credentials flow using Client Certificates for service APIs

This post shows how to implement an Azure client credential flows to access an API for a service-to-service connection. No user is involved in this flow. A client certificate (Private Key JWT authentication) is used to get the access token and the token is used to access the API which is then used and validated in the API. Azure Key Vault is used to create and provide the client certificate.