Backend for Frontend for ASP.NET Core Authentication

preview_player
Показать описание
Example of how to use the Backend for Frontend (BFF) pattern for ASP.NET Core Authentication. We explore how to store tokens on the backend and call external api's via your service.

#aspnetcore #authentication #bff
  1. Raw Coding
  2. bff
  3. backend for frontend
  4. asp.net core
  5. .net
  6. c#
Рекомендации по теме
Backend for Frontend 0:17:33

Backend for Frontend for ASP.NET Core Authentication

🛡️ BFF ( 0:09:24

🛡️ BFF ( Backend For Frontend ) Security Pattern

.NET is the 0:31:34

.NET is the best backend for your JavaScript frontend | .NET Conf 2023

How the Backend 0:02:41

How the Backend works? Server, Application, Database, and API ( by CodeON Jason K )

Episode 020 - 0:50:13

Episode 020 - The backend for frontend and the HttpClient - ASP.NET Core: From 0 to overkill

How To Connect 0:23:13

How To Connect Your React Frontend To Your AspNetCore Backend

What are the 0:01:47

What are the differences between Backend and Frontend in ASP.NET?

Your Single Page 0:47:05

Your Single Page Application needs a Backend for Frontend!

How Much Frontend 0:05:59

How Much Frontend & Backend is Required to Become a .NET Developer? 💻

Securing SPAs and 1:01:38

Securing SPAs and Blazor Applications using the BFF (Backend for Frontend) Pattern - Anders Abel

Securing SPAs and 1:03:16

Securing SPAs and Blazor Applications using the BFF (Backend for Frontend) Pattern - Dominick Baier

I have built 0:11:54

I have built Facebook 2.0🚀 (Frontend + Backend ) with ASP.net 🔥

ASP.NET Core Teil 0:24:47

ASP.NET Core Teil 5/7 - Entities über Frontend Formulare im Backend erstellen

C# TUTORIAL FOR 0:03:00

C# TUTORIAL FOR BEGINNERS - JOIN FRONTEND WITH BACKEND #4

Backend for Frontend 0:29:02

Backend for Frontend Pattern in Microservices

Frontend and Backend 0:25:34

Frontend and Backend Linking (Saving data in Database)ASP.Net MCV (.NetFramework) WebApp Series EP.4

Frontend Developer vs 0:00:11

Frontend Developer vs Backend Developer vs Fullstack Developer

Front End vs 0:07:03

Front End vs Back End - Which one is good for you ?

Securing SPAs and 1:39:12

Securing SPAs and Blazor Applications using the BFF (Backend for Frontend) Pattern

Front End vs 0:08:15

Front End vs Back End | Front End vs Back End Explained | Full Stack Training | Simplilearn

Securing SPAs and 0:56:53

Securing SPAs and Blazor Applications using the BFF (Backend for Frontend) Pattern - Dominick Baier

Installing Backend and 0:14:40

Installing Backend and Frontend packages/libraries in asp net core

How to be 0:00:59

How to be a backend Developer?

React JS + 1:01:17

React JS + .NET Core Web API + Microsoft SQL | full stack app tutorial

Комментарии
Автор

Great video, i feel authentication is the Achilles Heel for a lot of developers, SPAs are great but should not be looking after access/identity tokens as its just not secure.

shakeuk
Автор

Could you please make a video of a setup that's like damienbod's *bff-aspnetcore-angular* Git repo?

fieryscorpion
Автор

oHey Great video, did you create a github for this coding tutorial?

jamesterstudio
Автор

Please consider making a video on how to merge this tutorial with Blazor Webassembly Hosted App. Thanks!

mibli
Автор

Yo Yo not everybody is like you smart ad intelligent. Too fast bit bouncy over all your content. Thanks for sharing.

TellaTrix
Автор

If I understood correctly, this pattern means that even if an SPA can authenticate directly by calling the OAuth endpoint, for example when using Auth0, the best practice is to do this only through the backend, or is it something else ?

pqyh
Автор

Do you have an example where we are using google for authentication?

jamesterstudio
Автор

How do you redirect to youtube from your view frontend? Does the connect-youtube endpoint send back a redirect url with oidc params?

tombalabomba
Автор

Hi
Very good video. Three question. In a monolith app with no external authentication, just on the same server authentication.
Q1. Is storing a token in local storage a bad practice from security point of view, even if we are doing an Api call same server and not on some external server like youtube, facebook ?
Q2. If we are hitting apis only on our server, is authenticating a user with username and password is flawed ?. I mean is OpenId Connect still a best practice or it is over kill.
Q3. With BFF when using refresh token to get an access token. Is middleware a best play to implement this ?

What i understand from your BFF video, is token is stored at backend and with frontend only a small is cookie, that could contain a user-id. And then each an Api is called, we grab the token against that user-Id, populate the ClaimsPrincipal and complete an Api either external or on same server.

Thank you again. I'm learning a lot from you Sensi :).

TheAzerue
Автор

hi please share a a video for creating 'SSO' and do that just with pure C# code, I mean don't use Identity Server or etc. Teach this tech with pure code. thanks

aligeovany
Автор

Do you think using Distributed cache in Db is good way to store token against cookie ?

TheAzerue
Автор

Dotwatch ? . Where can I get the CLI ?

xardasu
Автор

I tried the fetch thing but it does not redirect to google

JamesterGo