We provide course about Identity & Access Control for modern Applications and APIs using ASP.NET Core 8. Modern application design has changed quite a bit in recent years. "Mobile-first" and "cloud-ready" are the types of applications you are expected to develop.
Content:
Also, to keep pace with these demands, Microsoft has revamped their complete web stack with ASP.NET Core to meet these architectural demands. Multi-platform, multi-client, and highly-mobile users bring a new set of challenges, so the approaches of the past are no longer appropriate for modern applications.
This 2-day workshop is your chance to dive into all things security related to these new technologies. Learn how to securely connect native and browser-based applications to your back-ends and integrate them with enterprise identity management systems as well as social identity providers and services.
Technologies covered:
.NET Core, ASP.NET Core, MVC, Web APIs, Claims, OpenID Connect, OAuth 2.0, WS-Federation, SAML, JSON Web Tokens, Single Sign-on and off, Federation, Delegation, Home Realm, Discovery, CORS.
Program:
Day 1 - Foundation & Authentication:
• Identity & Access Control in .NET Core
• ASP.NET Core Security Framework
• Claims-based Identity
• Cookie-based Authentication
• Social Logins (e.g. Google, Facebook, Twitter, etc.)
• OpenID Connect
• Data Protection
• Authorization
• Web Application Patterns
• Single Sign On / Single Sign Off
• Claims Transformation
• Federation Gateway
• Account & Identity Linking
• Home Realm Discovery
Day 2 - Web APIs & Access Control:
• Securing APIs
• Architecture & Scenarios
• Token-based Authentication
• OAuth 2.0
• Clients
• Scopes
• Flows
• Token lifetime management
• Refresh tokens
• OpenID Connect & OAuth 2.0 combined
• Server to Server communication
• Native & mobile Applications
• SPAs
• Custom credentials & token requests
Speaker: Anders Abel, Duende Software, Duende Software
Anders Abel is an senior .NET developer in Stockholm. He has been programming since he was 9 and still thinks it’s tremendously fun. He works with Duende Software on IdentityServer and designing identity and security solutions.
Target audience:
Anyone who wants course about Identity & Access Control for modern Applications and APIs using ASP.NET Core 8.
Computer Setup:
Attendees will need to bring a computer with the latest .NET Core SDK and the IDE of your choice (e.g. Visual Studio) installed.