Master Claims Transformation for Flexible JWT Auth in ASP.NET Core

preview_player
Показать описание

Claims-based authorization mechanisms are central to modern authorization in ASP.NET Core. However, the access tokens your Identity Provider (IDP) issued might not always perfectly align with your application's internal authorization needs. External IDPs like Microsoft Entra ID (previously Azure AD) or Auth0 might have their own schema for claims or might not directly issue all the claims your application needs for its authorization logic. The solution? Claims transformation.

Claims transformation allows you to modify the claims before the application uses them for authorization. In this video, I'll show you how to implement a custom claims transformation for flexible authorization policies.

Master Claims Transformation for Flexible ASP.NET Core Authorization

Join my weekly .NET newsletter:

Read my Blog here:

Chapters
0:00 What is Claims Transformation?
2:12 Configuring JWT Auth in ASP.NET Core
3:42 Getting a valid JWT with dotnet user-jwts
5:57 Implementing Claims Transformation
9:38 Adding a custom Authorization policy
11:01 Testing the custom Claims Transformation
12:14 RBAC in a Modular Monolith with Claims Transformation
  1. Milan Jovanović
  2. jwt auth
  3. asp.net core
  4. asp.net core authentication
  5. software engineering
  6. jwt authentication
Рекомендации по теме
Master Claims Transformation 0:14:10

Master Claims Transformation for Flexible JWT Auth in ASP.NET Core

OMG Doll Hair 0:00:53

OMG Doll Hair Transformation 💗

Mommy long legs 0:00:18

Mommy long legs Transformation #animation #shorts #poppyplaytime

Ice Lady Bug 0:00:23

Ice Lady Bug #iceladybug #ladybug #catnoir #muraculous #cosplay #transformation #marinette

Authentication made easy 0:10:39

Authentication made easy with ASP.NET Core Identity in .NET 8

Identity Based Encryption 0:09:18

Identity Based Encryption Transformation for Flexible Sharing of Encrypted Data in Public Cloud

Noah Epps: Flexible 0:04:13

Noah Epps: Flexible 11-Year-Old Tells a Story Through His Unique Moves

Instant Transformation @BrolyGainz007 0:00:25

Instant Transformation @BrolyGainz007 @IAmPhatPapi @Apexunn_

Never, Ever Give 0:04:55

Never, Ever Give Up. Arthur's Inspirational Transformation!

Extreme Yoga: pushing 0:02:26

Extreme Yoga: pushing the boundaries of flexibility

Easy Epoxy Countertop 0:00:31

Easy Epoxy Countertop Transformation #diy #shorts #youtubeshorts

Can't Do a 0:00:52

Can't Do a Resting Squat? Ankle Mobility Might Not Be Your Problem

Understanding the Finite 0:18:36

Understanding the Finite Element Method

Body Transformation Secret 0:00:51

Body Transformation Secret !!

🌊 Skinny Surfer 0:00:17

🌊 Skinny Surfer to Super Buff: The Ultimate weight and gym Transformation Journey! 💪

Yoga Body Transformation 0:00:09

Yoga Body Transformation 🤙|Totally Reshape Your Physique | #yoga #yogatransformation #shorts #girl...

RRR Alia Bhatt 0:00:16

RRR Alia Bhatt Transformation Journey #Shorts #Youtubeshorts #RRR Wedding Ranbir Kapoor

The Perfect Push 0:00:49

The Perfect Push Up!

Online Master's in 0:01:00

Online Master's in Digital Transformation and Innovation

Back Bridge Flexibility 0:18:21

Back Bridge Flexibility Transformation (Here's How)

HOW TO TRANSFORM 0:06:01

HOW TO TRANSFORM OBJECTS (MORPHING) - After Effects VFX Tutorial

D-Day Asfor | 1:17:06

D-Day Asfor | Master Class 'Digital Transformation & New Business Models'

1 Year Calisthenics 0:01:00

1 Year Calisthenics Body Transformation #shorts

Yoga Transformation Over 0:00:14

Yoga Transformation Over 40

Комментарии
Автор

All your videos are right on time 🤩
We use Microsoft Entra ID for authentication. However, we plan on building our own access control API and make use of claims transformations. We use Redis as cache.

Cesar-qijb
Автор

Great work, what is the advantages compared to adding claims directly into jwt?

ulvidemirsoy
Автор

Great video. I just have one question: if I need to access the database in the claims transformation process, where should I do it? In the implementation of IClaimsTransformation interface, or in the permission provider class?

maacpiash
Автор

Inventory management with redis. I like you with it

baudeejay
Автор

Excellent video! I learned a lot from you today :)

vamvdotnet
Автор

Does this work well with dynamic claims? Let’s say a CreateOrder Claim but said user can only create them for his department

EvekoShadow
Автор

great video, but in this case the normal user has the same permission than a user with a standard plan, he or she just need to be registered, even tough it was a great concept, you take the CreateScope and GetRequiredSerrvice from my comment?

haroldpepete
Автор

interesting solution. the problem is that that this only works in a monolith.
if you have 2 apis 1 .net and 1 python, then this logic will not work here. rather i think permissions should be part of the access token claims. in this way it won't matter what programming language I'm using, I'll be able to extract the permissions from the access token

abdulmoiz
Автор

How does this differ from ClaimsPrincipalFactory?

rusektor
Автор

Sorry, but what should be stored in Infrastructure and Persistence?

sunzhang-dv
Автор

我想知道 Infrastructure 和 Presentation 中应该存储哪些内容?

sunzhang-dv
Автор

Really good video, except i dislike minimal api, but other than that great.

RaZziaN