Securing Blazor Server-side Applications
Learn how to secure your Blazor Server application using a variety of best practice techniques for authentication and authorization.
What you'll learn
Authentication and authorization are two incredibly important aspects of a secure Blazor Server application. In this course, Securing Blazor Server Applications, you'll gain the ability to secure your Blazor application using a variety of best practice techniques for authentication and authorization. First, you'll explore how to log in and out of your Blazor application with cookies. Next, you'll discover how to work with ASP.NET Core Identity. Finally, you'll learn how to implement token-based security for your Blazor application using OAuth2 and OpenID Connect. When you're finished with this course, you'll have the skills and knowledge of implementing best-practice security techniques in Blazor Server applications needed to do so comfortably.
Table of contents
- Version Check 0m
- Coming Up 1m
- Course Prerequisites 0m
- Frameworks and Tooling 1m
- Blazor Authentication Scenarios 3m
- Demo - Introducing the Demo Application 3m
- Authentication Models, Cookies, and Tokens 4m
- Demo - Adding Cookie Authentication and Logging In 10m
- Demo - Logging Out 3m
- Switching to POST for Logging Out 2m
- Demo - Providing Initial State Data 6m
- Cookie Authentication in Blazor 4m
- Demo - Hiding or Showing Parts of the UI Depending on the Authentication State 5m
- Explaining the AuthenticationStateProvider 1m
- Demo - Blocking Unauthorized Access to a Page 2m
- Demo - Customizing Unauthorized Content 1m
- Demo - Using Authentication State Data in Procedural Logic 3m
- Protecting the API 2m
- Demo - Protecting the API 6m
- Summary 2m
- Coming Up 1m
- Token-based Authentication with Blazor 6m
- Demo - Inspecting IdentityServer 4m
- Authentication with an Identity Token 5m
- Demo - Logging in 12m
- Demo - Logging out 6m
- Authorization with an Access Token 1m
- Demo - Protecting the API 6m
- Demo - Passing an Access Token to our API 6m
- Gaining Long-lived Access with Refresh Tokens 2m
- Demo - Gaining Long-lived Access with Refresh Tokens 10m
- What's Next? 1m
- Summary 2m
About the author
Kevin Dockx is a freelance solution architect, author & consultant, living in Antwerp (Belgium). He's mainly focused on solution/application architectures & security for web-based (API) applications built with .NET, but he also keeps an eye out for new developments concerning other products from the .NET stack. He's a Microsoft MVP and board member of the RD MS Community. He's also a regular speaker at various (inter)national conferences & user group events, and works on various open source pro... more