ASP.NET Core SPA Authentication Tutorial (.NET 7 Minimal Apis C#)

preview_player
Показать описание


🕰 Timestamps
00:00 Introduction
01:34 Same Domain
05:45 Separate Domains
13:20 SSR Framework
18:24 Bonus: user information call elimination

👉 Try Rider
RD5K9-4TXXW-KMV3G-NYWSF-3ZSTP

#aspnetcore #authentication #cookies
  1. Raw Coding
  2. spa authentication
  3. asp.net core spa authentication
  4. how to authenticate spa with asp.net core
  5. spa cookie authnetication
  6. csharp
Рекомендации по теме
ASP.NET Core SPA 0:25:06

ASP.NET Core SPA Authentication Tutorial (.NET 7 Minimal Apis C#)

Authentication made easy 0:10:39

Authentication made easy with ASP.NET Core Identity in .NET 8

Session vs Token 0:02:18

Session vs Token Authentication in 100 Seconds

ASP.NET Core Authentication 0:24:47

ASP.NET Core Authentication Simplified | .NET Conf 2023

Authentication With ASP.NET 0:14:38

Authentication With ASP.NET Core And The SAFE Stack. SPA Login From The Server. (Pt. 5)

ASP.NET Core SPA 0:21:44

ASP.NET Core SPA Cookie Authentication vs XSRF (.NET 7 Minimal Apis C#)

Adding JWT Authentication 0:17:24

Adding JWT Authentication & Authorization in ASP.NET Core

ASP.NET Core Authentication 0:26:12

ASP.NET Core Authentication (.NET 7 Minimal Apis C#)

Backend for Frontend 0:17:33

Backend for Frontend for ASP.NET Core Authentication

How to Configure 0:16:28

How to Configure ASP.NET Core 3.1 Angular SPA, Identity Server 4 (Authentication) with PostgreSQL

Authentication With ASP.NET 0:33:00

Authentication With ASP.NET Core And The SAFE Stack. React SPA Login Using Azure AD. (Pt. 6)

Session Vs JWT: 0:07:00

Session Vs JWT: The Differences You May Not Know!

.NET 8 Authentication 0:20:25

.NET 8 Authentication with Identity in a Web API with Bearer Tokens & Cookies 🔒

ASP.NET Core SSO 0:14:39

ASP.NET Core SSO with Cookie Authentication (.NET 7 Minimal Apis C#)

Basics Part 1: 0:59:35

Basics Part 1: Introduction to ASP.NET Core Authentication & Authorization

ASP.Net Core Web 0:08:01

ASP.Net Core Web API JWT Tutorial [Using JWT in ASP.Net Core]

Productive ASP.NET Core 0:18:45

Productive ASP.NET Core Vite Vue SPA Tailwind Template with Identity Auth

ASP.NET Core SPA 0:13:41

ASP.NET Core SPA Setup | SpaServices.Extensions in .NET Minimal API

Blazor in 100 0:02:33

Blazor in 100 Seconds

Authenticating Your Angular 0:02:42

Authenticating Your Angular SPA with ASP.NET Web API and Auth0

ASP.NET Core External 0:35:43

ASP.NET Core External Authentication (OAuth, .NET 7 Minimal Apis C#)

React and ASP.NET 0:32:16

React and ASP.NET Core Identity Authentication

ASP.NET Core JWT 0:32:54

ASP.NET Core JWT Authentication Tutorial (.NET 7 Minimal Apis C#)

ASP.NET Core Cookie 0:46:19

ASP.NET Core Cookie Authentication (.NET 7 Minimal Apis C#)

Комментарии
Автор

There could never be enough auth videos

cocoscacao
Автор

This helped a lot... Thanks a lot for making the video series on Authentication!

saurabhumadikar
Автор

Hey Anton, nice content and the whole Auth playlist is just incredible.
It's been a while so I don't expect your answer, but I'm still wondering about a few things

1. When SPA and API are on different sub-domains SameSite=Lax and enabling CORS should work well as in your example.
2. However when my SPA and API are on completely different domains I guess I need SameSite=None and CORS, otherwise it won't work, right? In that case, I have to enable anti-forgery token generation for my API and attach it to every Response + verification of it on the API side. Without SameSite=None it won't be possible to share the cookie across completely different domains, correct? And when SameSite=None we are vulnerable to CSRF attack so anti-forgery is a must.

Thanks

alexanderbikk
Автор

Dude great tutorials! Could you record a vid on elastic search implementation and visualization with kibana? Cheers

Computer_Gig
Автор

Thanks for this series, i have a question, do we need csrf protection in this case when we are using cookies for authentication, even if cors is exists, can a mobile app or let's say a non browser app that doesn't respect cors access or make requests?

RatebBarakat
Автор

Interesting domain separation representation on the wall.

prouleau
Автор

Love the authentication series. In your opinion, would it be best to create a secure cookie on the backend rather than on the frontend vue app for example? Are there limitations with creating the secure cookie that's available across subdomains in a Vue app?

wdorsett
Автор

Thanks so much for all this material, question, would it be complicated to add role based authorization?

joshem
Автор

great video!

he says spa, I say S P A

lasindunuwanga
Автор

This is Awesome, how to achieve this with something like WS-Federation SSO?

YPLabs
Автор

Great video! Any thoughts on making a video on GraphQL?

straddlescout
Автор

Hey Anton, how are you? I have a question: For OAuth can we follow the same approach? Or we will need something specific? With your tutorials and explanations I''m trying to build my own auth server and use it for all my applications (like a firebase, but just for personal use and free hahaha) Thank you so much for your content! Off question: are you a communist? hahaha you are quite humble it seems like my communists friends

Автор

How would you do 3rd party authentication with same domain SPAs? I am just wondering if this would be possible without having the user leave the page. I know I could just start off the app by having the user login into Azure AD, and then on success redirecting it to the main SPA app, but I want to know whether it would be possible to have the user login using a 3rd party at arbitrary points without having it leave the page which would cause the client state to be invalidated.

markogrdinic
Автор

Can we secure Blazor wasm like this without Identity Server 6

prathameshshende
Автор

Акцент такой знакомый
Родом из стран пост советского пространства?

pispis
visit shbcf.ru