Securing ASP.NET Core with OAuth2 and OpenID Connect

When you're building an ASP.NET Core MVC web app or API, you'll want to secure it sooner than later. In this course, you'll learn how to utilize OAuth2 and OpenID Connect, today's widely-used standards, to help you achieve your goals efficiently.
Course info
Rating
(120)
Level
Intermediate
Updated
Aug 7, 2017
Duration
5h 44m
Table of contents
Course Overview
Introduction
Understanding Authentication with OpenID Connect
Securing Your Web Application
Working with Claims in Your Web Application
Understanding Authorization with OAuth2 and OpenID Connect
Securing Your API
Authorization Policies and Access Control
Advanced Topics
Dealing with Credentials
Dealing with External Identity Providers and 2FA
Getting Ready for Production
Description
Course info
Rating
(120)
Level
Intermediate
Updated
Aug 7, 2017
Duration
5h 44m
Description

Knowing how to secure applications is important, but knowing why we make certain decisions is, arguably, even more important. In this course, Securing ASP.NET Core with OAuth2 and OpenID Connect, you'll learn the ins and outs of OAuth2 and OpenID Connect (OIDC), being today's widely-used standards. First, you'll explore what these standards entail, and how you can integrate their implementations in ASP.NET Core. Next, you'll discover how to secure both a web app and an API, from integrating OIDC support to working with authorization policies, handling credentials, and going live. Finally, you'll learn how to use, configure, and extend IdentityServer4. By the end of this course, you'll have the necessary knowledge to efficiently secure your ASP.NET applications.

About the author
About the author

Kevin Dockx is a freelance solution architect (mobile/web), author & consultant, living in Antwerp (Belgium).

More from the author
Testing with EF Core
Intermediate
1h 13m
Jun 14, 2019
More courses by Kevin Dockx
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi, I'm Kevin. Welcome to this Pluralsight course, Securing ASP. NET Core with OAuth2 and OpenID Connect. I'm a solution architect focused to APIs and security and a Microsoft MVP. Securing applications has always been important but maybe even more so today with applications living outside of company walls and being used in a variety of devices. But at the same time it has become increasingly harder to secure these applications. In this course, you'll learn how to secure your ASP. NET core web applications and APIs using modern-day standards like OAuth2 and OpenID Connect. You'll learn what these standards entail and what they can be used for. We'll use IdentityServer4 throughout the course starting with integrating it with an ASP. NET core web app, right up to securely calling an ASP. NET core API. We'll cover working with claims but also authorization policies and access control. You'll also learn how to deal with expiration and token replication. But we won't stop there. We'll cover dealing with credentials including custom user stores, Windows credentials, and integrating with social providers like Facebook. You'll also learn how to implement 2-factor authentication. We'll end the course with a module on what to take care of when going to production. After this course, you'll have a thorough understanding of what you should take care of when securing your ASP. NET core applications and how to do it.