filmov
tv
ASP.Net Core Web API - Secure using API Key Authentication
Показать описание
Please donate 👇👇🙂
You can easily secure ASP.NET Core Web API using API Key Authentication, it is just a matter of doing few steps and you will be able to secure your endpoints.
In this video I will explain to you how to use API Key to secure your ASP.NET Core Web API in 2 different ways: Custom Attribute and Custom Middleware.
Using the Custom Attributes:
=========================
we want to introduce a new custom attribute that will inherit from ASP.NET Core Attributes and it will implement the IAsyncActionResult interface.
We will verify that the ApiKey header exists, has a value and its value is actually the correct API Key, unless otherwise we will return a 401 Unauthorized response to the client indicating that the request is not authorized to access the endpoint.
We will be using this attribute to decorate the controller so that any request that is routed to the attributed controller will be redirected to ApiKeyAttribute
Your custom attribute will be inheriting from the base abstract class Attribute of global System.Attribute, which will transform your class into a custom attribute, And also you will be implementing the IAsyncActionFilter Interface so that your custom attribute will be able to intercept the call request, process it and then route the request back to the controller.
Using a Custom Middleware:
=======================
With a custom ASP.NET Core Middleware you are able to intercept and process the request object in a single place, you can intercept each and every request that comes to your published web APIs and tap into the request headers collection and search for the API key header and validate its value.
So we will be doing almost exactly the same logic which we did in our custom attribute but this time within a middleware.
What defines a middleware is its constructor that takes an instance of RequestDelegate Class, this instance is actually the pipeline passed between the ASP.NET Core Middleware collection. so this custom middleware will also receive this instance of pipeline and do some operations on it.
The next important thing is the InvokeAsync method that you need to define in this middleware so that it will contain the main process and in our case the main process will be to search and validate the ApiKey header name and value within the httpcontext request headers collection, so this need to be passed in the method argument.
#aspdotnettutorial
#aspdotnetmvc5tutorial
You can easily secure ASP.NET Core Web API using API Key Authentication, it is just a matter of doing few steps and you will be able to secure your endpoints.
In this video I will explain to you how to use API Key to secure your ASP.NET Core Web API in 2 different ways: Custom Attribute and Custom Middleware.
Using the Custom Attributes:
=========================
we want to introduce a new custom attribute that will inherit from ASP.NET Core Attributes and it will implement the IAsyncActionResult interface.
We will verify that the ApiKey header exists, has a value and its value is actually the correct API Key, unless otherwise we will return a 401 Unauthorized response to the client indicating that the request is not authorized to access the endpoint.
We will be using this attribute to decorate the controller so that any request that is routed to the attributed controller will be redirected to ApiKeyAttribute
Your custom attribute will be inheriting from the base abstract class Attribute of global System.Attribute, which will transform your class into a custom attribute, And also you will be implementing the IAsyncActionFilter Interface so that your custom attribute will be able to intercept the call request, process it and then route the request back to the controller.
Using a Custom Middleware:
=======================
With a custom ASP.NET Core Middleware you are able to intercept and process the request object in a single place, you can intercept each and every request that comes to your published web APIs and tap into the request headers collection and search for the API key header and validate its value.
So we will be doing almost exactly the same logic which we did in our custom attribute but this time within a middleware.
What defines a middleware is its constructor that takes an instance of RequestDelegate Class, this instance is actually the pipeline passed between the ASP.NET Core Middleware collection. so this custom middleware will also receive this instance of pipeline and do some operations on it.
The next important thing is the InvokeAsync method that you need to define in this middleware so that it will contain the main process and in our case the main process will be to search and validate the ApiKey header name and value within the httpcontext request headers collection, so this need to be passed in the method argument.
#aspdotnettutorial
#aspdotnetmvc5tutorial
0:10:12
ASP.NET Core Web API Features You Need to Know In 10 Minutes or Less
0:00:20
Generate PDF in ASP.NET Core Like a PRO #dotnet #dotnetcore
0:53:30
ASP.NET Web API CRUD Operations - .NET8 and Entity Framework Core Tutorial
1:51:02
ASP.NET Core Web API and Entity Framework Core - Full Course Including CRUD
0:09:03
ASP.NET Web APIs Explained in 9 Minutes
0:52:06
Intro to Web API in .NET 6 - Including Minimal APIs, Swagger, and more
0:07:49
Create and Run your First ASP.NET Core Web API (.NET 9) using OpenAPI, Postman and Swagger UI
2:08:57
Web API Development in .NET 8 in 2 Hours | ASP.NET CORE | RESTFUL API
2:32:39
RESTful API with .NET Core (.NET 7) - Full Course for Beginners
0:08:01
ASP.Net Core Web API JWT Tutorial [Using JWT in ASP.Net Core]
0:13:40
Clean Architecture C# | Clean Architecture ASP.NET Core Web API | Step-by-Step Guide
0:15:49
ASP.NET Core Web API Best Practices
0:00:59
What is the role of Async and Await ?
0:13:31
ASP.NET Core Web API .NET 8 2024 -1. Create Project + Install
3:40:05
Complete .NET Core Web API Tutorial with JWT Token | Learn from Scratch
1:03:59
.NET 9 Web API & Entity Framework 🚀 Full Course: CRUD, Code-First Migrations & SQL Server
0:01:29
Part 1 Web/REST API Introduction || Asp.Net Core Web API Tutorials C#
0:50:44
.NET 8 Web API & Entity Framework 🚀 Full CRUD Course (with Code-First Migrations & SQL Serve...
0:26:53
Create Asp.Net Core Web API With JWT Role Based Authorization Using Identity Framework From Scratch
0:38:31
CRUD Operations using ASP NET Web API and SQL Server | Database Connection Using ODBC
3:43:18
ASP.NET Core Full Course For Beginners
1:00:44
ASP.NET Core Crash Course - C# App in One Hour
0:00:29
How to Easily Develop an ASP.NET Core Web API Reporting Service App | Bold Reports
2:12:25
ASP.NET Core 8 Web API in Clean architecture from scratch
Комментарии