Masterclass: Identity & Access Control for modern Web Applications and APIs using ASP.NET Core 1.0 with Dominick Baier

Modern application design has changed quite a bit in recent years. “Mobile-first” and “cloud-ready” are the types of applications you are expected to develop. Also, to keep pace with these demands, Microsoft has revamped their complete web stack with ASP.NET Core 1.0 to meet these architectural demands. Needless to say, you also have to secure these apps.

Multi-platform, multi-client, and highly-mobile users bring a new set of challenges, so the approaches of the past are no longer appropriate for modern applications. This two day workshop is your chance to dive into all things security related to these new technologies. Learn how to securely connect native and browser-based applications to your back-ends and integrate them with enterprise identity management systems as well as social identity providers and services.

This workshop covers everything you need to know to build modern and secure web, native & mobile applications.  The foundation will be Microsoft’s latest technology stack but will also include IdentityServer4, which is the officially recommended framework for building token services.

Technologies covered: .NET Core, ASP.NET Core, MVC, Web APIs, Claims, OpenID Connect, OAuth 2.0, WS-Federation, SAML, JSON Web Tokens, Single Sign-on and off, Federation, Delegation, Home Realm, Discovery, CORS

About Dominick Baier

Dominick Baier is an independent consultant specializing in identity & access control. He helps companies around the world designing & implementing authentication and authorization for their distributed web and native applications. He’s the co-author of the popular OpenID Connect & OAuth 2.0 framework called IdentityServer (http://identityserver.io), has written a couple of books, blogs at http://leastprivilege.com and tweets as @leastprivilege.

Agenda

Day 1: Foundation & Authentication

  • Identity & Access Control in .NET Core
  • ASP.NET Core Security Framework
    • Claims-based Identity
    • Cookie-based Authentication
    • Social Logins (e.g. Google, Facebook, Twitter, etc.)
    • OpenID Connect
    • Data Protection
    • Authorization
  • Web Application Patterns
    • Single Sign On / Single Sign Off
    • Claims Transformation
    • Federation Gateway
    • Account & Identity Linking
    • Home Realm Discovery

Day 2: Web APIs & Access Control

  • Securing APIs
    • Architecture & Scenarios
    • Token-based Authentication
  • OAuth 2.0
    • Clients
    • Scopes
    • Flows
    • Token lifetime management
    • Refresh tokens
  • OpenID Connect & OAuth 2.0 combined
    • Server to Server communication
    • Native & mobile Applications
    • SPAs
    • Custom credentials & token requests

 

Prerequisites

Experience developing web applications using C#

Utbildningsformer

Addskills erbjuder mycket mer än traditionell klassrumsutbildning. Se vilka utbildningsformer som passar just dig!

Addskills kunskapsbank

Ta del av intressanta artiklar, webinars och filmade seminarier.

Anpassad företagsutbildning

Behöver du en utbildning som är anpassad till ditt företags behov? Läs mer om våra anpassade företagsutbildningar.

Om kursen

Pris: 24 450,00 kr

exklusive moms

Längd 2 dagar
Kurskod MC035

Kursen hålls på begäran

Kontakta oss för mer information.

Telefon: 08-440 11 00
E-post: info@addskills.com

Chatta med oss

Chatta med oss!

Har du frågor eller funderingar? Chatta med oss direkt!