10:[["$","$L2a",null,{"props":{"lessonContent":{"components":[{"type":"SlateHTML","content":{"html":"

In this course, we learned how to secure different types of ASP.NET Core applications. We should now be familiar with the following topics:

","comp_id":"x1lwR9zpCmQWBC8v0sBYc"},"hash":0},{"type":"Columns","mode":"edit","content":{"comps":[{"type":"MarkdownEditor","content":{"version":"2.0","text":"* **Principles of single sign-on:** We learned how single sign-on (SSO) uses a separate application known as identity provider to authenticate the other applications within the ecosystem.\n\n* **Authentication vs. authorization:** We discovered that authentication is used to ensure that the user is who they say they are while authorization is used to determine whether the user has the necessary permissions to access the resource.\n\n* **OpenID Connect:** We learned that this protocolis commonly used for authentication in SSO. It determines how the the client application redirects to the authentication screen and how the access token is shared upon successful authentication.","mdHtml":"

\n
Principles of single sign-on: We learned how single sign-on (SSO) uses a separate application known as identity provider to authenticate the other applications within the ecosystem.
\n
\n
Authentication vs. authorization: We discovered that authentication is used to ...

In this course, we learned how to secure different types of ASP.NET Core applications. We should now be familiar with the following topics:

\n
Principles of single sign-on: We learned how single sign-on (SSO) uses a separate application known as identity provider to authenticate the other applications within the ecosystem.
\n
\n
Authentication vs. authorization: We discovered that authentication is used to ...

In this course, we learned how to secure different types of ASP.NET Core applications. We should now be familiar with the following topics:

\n
Principles of single sign-on: We learned how single sign-on (SSO) uses a separate application known as identity provider to authenticate the other applications within the ecosystem.
\n
\n
Authentication vs. authorization: We discovered that authentication is used to ...

","cursorPosition":{"line":0,"ch":0}},"hash":"1","width":"75"},{"type":"DrawIOWidget","content":{"path":"/api/collection/6586453712175104/5945896371748864/page/4513640474214400/image/5780158276567040?page_type=collection_lesson","caption":"","editorImagePath":"/api/collection/6586453712175104/5945896371748864/page/4513640474214400/image/6717589347762176?page_type=collection_lesson","version":2,"height":210,"width":200.64,"editorGCSImagePath":"educative-us-central1/uc/v5/6586453712175104/collections/5945896371748864/rev-65/pages/4513640474214400/images/6717589347762176-2024-01-31T11:13:11.830773","slidesEnabled":true,"isSlides":false,"slidesCaption":[],"redirectionUrl":"","borderColor":"#ffffff","slidesId":""},"hash":2,"width":"25"}],"comp_id":"Ww3xwax6_mVZEE6kXhbmM"},"iteration":2,"hash":1,"children":[{"text":""}],"status":"normal","contentID":"Ujm9ZSY6C8-o-UOKCdUWs","saveVersion":3}]},"isPreviewLesson":false,"pageType":"collection_lesson","aiCoachVideoUrl":"https://youtu.be/kgl8y9J3O6c","collectionDetailsSSR":{"title":"Using Single Sign-On for Securing Applications in ASP.NET Core","summary":"Securing web applications is extremely important, as you do not want unauthorized people to gain access to your data. The most convenient way of securing an application is to use single sign-on (SSO) because it allows users to authenticate once and gain access to all apps within the same system.\n\nIn this course, you’ll cover the process of using SSO in ASP.NET Core apps. You’ll also cover its usage inside all application types supported by ASP.NET Core, including MVC, web API, gRPC services, Blazor, and SignalR.\n\nBy the end of this course, you will have learned what SSO consists of, what protocols it uses, and how it’s configured inside an ASP.NET Core middleware. You will also have learned how to secure any endpoints, pages, and views supported by ASP.NET Core.","details":"","clos":["An understanding of the fundamentals of authentication and authorization","Familiarity with how single sign-on works with OpenID Connect and OAuth","Hands-on experience implementing single sign-on in all ASP.NET Core application types, including Blazor","Working knowledge of how to build your own authentication provider","Hands-on experience with integrating any type of single sign-on provider with ASP.NET Core application middleware"],"toc":{"categories":[{"id":"pb6ofkt4u","title":"Introduction to Single Sign-On (SSO)","pages":[{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6199262347788288,"id":6199262347788288,"title":"Getting Started","is_preview":true,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"getting-started"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":4692595453984768,"id":4692595453984768,"title":"Authentication vs. Authorization","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"authentication-vs-authorization"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":4662468355555328,"id":4662468355555328,"title":"Single Sign-On (SSO) Basics","is_preview":true,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"single-sign-on-sso-basics"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5993576884076544,"id":5993576884076544,"title":"SSO Provider Basics","is_preview":true,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"sso-provider-basics"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6449158466306048,"id":6449158466306048,"title":"Using OpenID Connect for Authentication","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"using-openid-connect-for-authentication"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5996030266703872,"id":5996030266703872,"title":"Using OAuth for Authorization","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"using-oauth-for-authorization"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6618777237848064,"id":6618777237848064,"title":"Quiz Yourself on SSO Basics","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"quiz-yourself-on-sso-basics"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Get familiar with SSO in ASP.NET Core, its basics, and essential implementation steps."},{"id":"4vi81zvul","title":"JWT and Authorization Middleware","pages":[{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5479313086087168,"id":5479313086087168,"title":"JSON Web Token and its Structure","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"json-web-token-and-its-structure"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6293188786257920,"id":6293188786257920,"title":"ASP.NET Core Authentication Middleware","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"aspdotnet-core-authentication-middleware"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":4971582168236032,"id":4971582168236032,"title":"Configuring SSO Middleware in ASP.NET Core","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"configuring-sso-middleware-in-aspdotnet-core"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":4628052900052992,"id":4628052900052992,"title":"Role-Based Authorization","is_preview":true,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"role-based-authorization"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":4514612965539840,"id":4514612965539840,"title":"Policy-Based Authorization","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"policy-based-authorization"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5156053244968960,"id":5156053244968960,"title":"Quiz Yourself on Authorization Middleware","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"quiz-yourself-on-authorization-middleware"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5221990371426304,"id":5221990371426304,"title":"Challenge: Enforcing Role-Based Authorization","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"challenge-enforcing-role-based-authorization"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":4697489518886912,"id":4697489518886912,"title":"Solution Review: Enforcing Role-Based Authorization","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"solution-review-enforcing-role-based-authorization"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Unpack the core of JWTs, authentication middleware, SSO configuration, and role-based authorization in ASP.NET Core."},{"id":"w1btqohha","title":"Enabling SSO in MVC Apps","pages":[{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6387982942339072,"id":6387982942339072,"title":"MVC Overview","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"mvc-overview"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5645723523350528,"id":5645723523350528,"title":"Configuring SSO Inside an MVC Application","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"configuring-sso-inside-an-mvc-application"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6261817137168384,"id":6261817137168384,"title":"Enforcing Authentication and Authorization on MVC Views","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"enforcing-authentication-and-authorization-on-mvc-views"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5903151380824064,"id":5903151380824064,"title":"Quiz Yourself on SSO in MVC Apps","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"quiz-yourself-on-sso-in-mvc-apps"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5385503886802944,"id":5385503886802944,"title":"Challenge: Adding Public and Admin Views","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"challenge-adding-public-and-admin-views"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":4940034089943040,"id":4940034089943040,"title":"Solution Review: Adding Public and Admin Views","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"solution-review-adding-public-and-admin-views"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Work your way through enabling SSO, configuring authentication, and managing MVC views access in ASP.NET Core."},{"id":"c32yb7jda","title":"Enabling SSO in Razor Pages","pages":[{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6721865781084160,"id":6721865781084160,"title":"Razor Pages Overview","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"razor-pages-overview"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5177272598003712,"id":5177272598003712,"title":"Configuring SSO inside a Razor Pages App","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"configuring-sso-inside-a-razor-pages-app"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5364452020715520,"id":5364452020715520,"title":"Enforcing Authorization on Individual Razor Pages","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"enforcing-authorization-on-individual-razor-pages"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5574049931198464,"id":5574049931198464,"title":"Quiz Yourself on SSO in Razor Pages","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"quiz-yourself-on-sso-in-razor-pages"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5194484360675328,"id":5194484360675328,"title":"Challenge: Adding a Restricted Razor Page","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"challenge-adding-a-restricted-razor-page"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5065698390573056,"id":5065698390573056,"title":"Solution Review: Adding a Restricted Razor Page","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"solution-review-adding-a-restricted-razor-page"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Grasp the fundamentals of securely integrating SSO in Razor Pages apps."},{"id":"mza13pofk","title":"Enabling SSO in Web API","pages":[{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5955086125367296,"id":5955086125367296,"title":"Web API Overview","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"web-api-overview"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":4558459749793792,"id":4558459749793792,"title":"Passing a JWT into Headless APIs","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"passing-a-jwt-into-headless-apis"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5626935675453440,"id":5626935675453440,"title":"Securing Controllers","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"securing-controllers"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5410249407987712,"id":5410249407987712,"title":"Securing Minimal API Endpoints","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"securing-minimal-api-endpoints"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6584689894359040,"id":6584689894359040,"title":"Quiz Yourself on Using SSO in a Web API","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"quiz-yourself-on-using-sso-in-a-web-api"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":4564163382476800,"id":4564163382476800,"title":"Challenge: Restricting Write Requests","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"challenge-restricting-write-requests"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6261986704490496,"id":6261986704490496,"title":"Solution Review: Restricting Write Requests","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"solution-review-restricting-write-requests"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Dig into securing and authorizing web API endpoints using JWTs and other methodologies."},{"id":"iep6vnet4","title":"Enabling SSO in Blazor","pages":[{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6412327085408256,"id":6412327085408256,"title":"Blazor WebAssembly Overview","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"blazor-webassembly-overview"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5877280178044928,"id":5877280178044928,"title":"Blazor Server Overview","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"blazor-server-overview"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6645194843488256,"id":6645194843488256,"title":"Configuring SSO in Blazor WebAssembly","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"configuring-sso-in-blazor-webassembly"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5142536244690944,"id":5142536244690944,"title":"Securing Blazor WebAssembly Views","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"securing-blazor-webassembly-views"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":4786948184735744,"id":4786948184735744,"title":"Configuring SSO in Blazor Server","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"configuring-sso-in-blazor-server"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6054847679561728,"id":6054847679561728,"title":"Securing Blazor Server Views","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"securing-blazor-server-views"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5221333996404736,"id":5221333996404736,"title":"Quiz Yourself on SSO in Blazor","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"quiz-yourself-on-sso-in-blazor"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6232719002173440,"id":6232719002173440,"title":"Challenge: Securing Blazor Pages","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"challenge-securing-blazor-pages"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5353745539661824,"id":5353745539661824,"title":"Solution Review: Securing Blazor Pages","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"solution-review-securing-blazor-pages"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Follow the process of enabling and securing SSO for Blazor WebAssembly and Server applications."},{"id":"f9c0yq0uy","title":"Enabling SSO in gRPC","pages":[{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5719043212050432,"id":5719043212050432,"title":"gRPC Overview","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"grpc-overview"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6591166570823680,"id":6591166570823680,"title":"Passing JWT from a gRPC Client","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"passing-jwt-from-a-grpc-client"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5891531699126272,"id":5891531699126272,"title":"Securing gRPC Endpoints","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"securing-grpc-endpoints"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6615257579257856,"id":6615257579257856,"title":"Quiz Yourself on SSO in gRPC","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"quiz-yourself-on-sso-in-grpc"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5056965866422272,"id":5056965866422272,"title":"Challenge: Securing gRPC Communication","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"challenge-securing-grpc-communication"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5901931761106944,"id":5901931761106944,"title":"Solution Review: Securing gRPC Communication","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"solution-review-securing-grpc-communication"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Master the steps to secure gRPC communication using JWT, authorize endpoints, and handle errors."},{"id":"0bny2hu3i","title":"Enabling SSO in SignalR","pages":[{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5640512872382464,"id":5640512872382464,"title":"SignalR Overview","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"signalr-overview"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5315934191091712,"id":5315934191091712,"title":"Passing JWT from a SignalR Client","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"passing-jwt-from-a-signalr-client"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5124486292307968,"id":5124486292307968,"title":"Quiz Yourself on SSO in SignalR","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"quiz-yourself-on-sso-in-signalr"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5884646262571008,"id":5884646262571008,"title":"Challenge: Adding a Secure Chat Channel","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"challenge-adding-a-secure-chat-channel"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5630748130017280,"id":5630748130017280,"title":"Solution Review: Adding a Secure Chat Channel","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"solution-review-adding-a-secure-chat-channel"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Try out securing SignalR with JWT and OIDC for authenticated communication."},{"id":"1c950vhid","title":"Wrapping Up","pages":[{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":4513640474214400,"id":4513640474214400,"title":"Summary","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"summary"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":5867793347772416,"id":5867793347772416,"title":"Closing Thoughts","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"closing-thoughts"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Walk through securing ASP.NET Core apps using SSO, OpenID Connect, and OAuth protocols."},{"id":"m6xwrzeid","title":"Appendix","pages":[{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":6433800973975552,"id":6433800973975552,"title":"Setting Up a Local Development Environment","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","is_lesson":false,"slug":"setting-up-a-local-development-environment"},{"author_id":6586453712175104,"collection_id":5945896371748864,"page_id":4701978267222016,"id":4701978267222016,"title":"Setting Up a Self-Signed SSL Certificate","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","is_lesson":false,"slug":"setting-up-a-self-signed-ssl-certificate"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Work your way through setting up a local environment and securing it with an SSL certificate."}]},"page_titles":{"6199262347788288":"Getting Started","4692595453984768":"Authentication vs. Authorization","4662468355555328":"Single Sign-On (SSO) Basics","5993576884076544":"SSO Provider Basics","5996030266703872":"Using OAuth for Authorization","6618777237848064":"Quiz Yourself on SSO Basics","5479313086087168":"JSON Web Token and its Structure","6293188786257920":"ASP.NET Core Authentication Middleware","4971582168236032":"Configuring SSO Middleware in ASP.NET Core","4628052900052992":"Role-Based Authorization","4514612965539840":"Policy-Based Authorization","5156053244968960":"Quiz Yourself on Authorization Middleware","5221990371426304":"Challenge: Enforcing Role-Based Authorization","4697489518886912":"Solution Review: Enforcing Role-Based Authorization","6387982942339072":"MVC Overview","5645723523350528":"Configuring SSO Inside an MVC Application","6261817137168384":"Enforcing Authentication and Authorization on MVC Views","5903151380824064":"Quiz Yourself on SSO in MVC Apps","5385503886802944":"Challenge: Adding Public and Admin Views","4940034089943040":"Solution Review: Adding Public and Admin Views","6721865781084160":"Razor Pages Overview","5177272598003712":"Configuring SSO inside a Razor Pages App","5364452020715520":"Enforcing Authorization on Individual Razor Pages","5574049931198464":"Quiz Yourself on SSO in Razor Pages","5194484360675328":"Challenge: Adding a Restricted Razor Page","5065698390573056":"Solution Review: Adding a Restricted Razor Page","5955086125367296":"Web API Overview","4558459749793792":"Passing a JWT into Headless APIs","5626935675453440":"Securing Controllers","5410249407987712":"Securing Minimal API Endpoints","6584689894359040":"Quiz Yourself on Using SSO in a Web API","4564163382476800":"Challenge: Restricting Write Requests","6261986704490496":"Solution Review: Restricting Write Requests","6412327085408256":"Blazor WebAssembly Overview","6645194843488256":"Configuring SSO in Blazor WebAssembly","5142536244690944":"Securing Blazor WebAssembly Views","4786948184735744":"Configuring SSO in Blazor Server","6054847679561728":"Securing Blazor Server Views","5221333996404736":"Quiz Yourself on SSO in Blazor","6232719002173440":"Challenge: Securing Blazor Pages","5353745539661824":"Solution Review: Securing Blazor Pages","5719043212050432":"gRPC Overview","5891531699126272":"Securing gRPC Endpoints","6591166570823680":"Passing JWT from a gRPC Client","6615257579257856":"Quiz Yourself on SSO in gRPC","5056965866422272":"Challenge: Securing gRPC Communication","5901931761106944":"Solution Review: Securing gRPC Communication","5640512872382464":"SignalR Overview","5315934191091712":"Passing JWT from a SignalR Client","5124486292307968":"Quiz Yourself on SSO in SignalR","5884646262571008":"Challenge: Adding a Secure Chat Channel","5630748130017280":"Solution Review: Adding a Secure Chat Channel","4513640474214400":"Summary","5867793347772416":"Closing Thoughts","6433800973975552":"Setting Up a Local Development Environment","4701978267222016":"Setting Up a Self-Signed SSL Certificate","6449158466306048":"Using OpenID Connect for Authentication","5877280178044928":"Blazor Server Overview"},"page_tags":{"5993576884076544":"","5996030266703872":"","4692595453984768":"","6293188786257920":"","4971582168236032":"","4628052900052992":"","4514612965539840":"","6199262347788288":"","4662468355555328":"","6618777237848064":"","5479313086087168":"","5221990371426304":"","4697489518886912":"","5156053244968960":"","6433800973975552":"","4701978267222016":"","6387982942339072":"","5645723523350528":"","6449158466306048":"","6261817137168384":"","5177272598003712":"","6721865781084160":"","5364452020715520":"","5903151380824064":"","5574049931198464":"","5385503886802944":"","4940034089943040":"","5194484360675328":"","5065698390573056":"","5955086125367296":"","4558459749793792":"","5626935675453440":"","5410249407987712":"","6645194843488256":"","4786948184735744":"","6412327085408256":"","5877280178044928":"","5142536244690944":"","6054847679561728":"","6584689894359040":"","6261986704490496":"","4564163382476800":"","5353745539661824":"","6232719002173440":"","5221333996404736":"","6591166570823680":"","5719043212050432":"","5891531699126272":"","5901931761106944":"","5056965866422272":"","6615257579257856":"","5315934191091712":"","5640512872382464":"","5630748130017280":"","5884646262571008":"","5124486292307968":"","4513640474214400":"","5867793347772416":""},"collection_toc_is_enabled":true,"page_count":null,"docker":{"container":{"file":{"name":"sso.tar.gz","size":229},"imageName":"author-6586453712175104-collection-5945896371748864-rev-37-container-4735967091097600-sso","buildStatusUrl":"/api/author/6586453712175104/collection/5945896371748864/containers/4735967091097600/build/status","buildLogUrl":"/api/author/6586453712175104/collection/5945896371748864/containers/4735967091097600/build/log","metadata":{"sizeInBytes":229},"id":-1,"tarballDownloadUrl":"/api/author/6586453712175104/collection/5945896371748864/containers/4735967091097600/download","rebuildImageUrl":"/api/author/6586453712175104/collection/5945896371748864/containers/4735967091097600/rebuild","buildStatus":"SUCCESS","track":false},"envs":[],"jobs":[{"key":"DWxL083pjkKVvQehkLXiN","jobType":"Live","name":"Stand Alone Auth Provider","inputFileName":"Program.cs","runScript":"ls","ports":"5050","startScript":"dotnet run --project /usercode/OpenIddictAuthProvider/OpenIddictAuthProvider.csproj","https":false,"forceRelaunchOnRun":true,"runInLiveContainer":true},{"key":"37utipSRRywkkYUC7Ftbq","jobType":"Live","name":"Client App Only","inputFileName":"Program.cs","runScript":"ls","ports":"5050","startScript":"dotnet run --project /usercode/DemoApp/DemoApp.csproj","https":false,"forceRelaunchOnRun":true,"runInLiveContainer":true},{"key":"jx26GEOc6tgqKSxf7SQaT","jobType":"Live","name":"Full Authentication Flow","inputFileName":"Program.cs","runScript":"ls","ports":"5050","startScript":"dotnet run --project /usercode/OpenIddictAuthProvider/OpenIddictAuthProvider.csproj &\nuntil $(curl --output /dev/null --silent --head --fail http://localhost:3000); do\n printf '.'\n sleep 5\ndone\ndotnet run --project /usercode/DemoApp/DemoApp.csproj","https":false,"forceRelaunchOnRun":true,"runInLiveContainer":true},{"key":"m1irZyCSD1V5ndnGThKO9","jobType":"Live","name":"Full Authentication Flow With Secondary App","inputFileName":"Program.cs","runScript":"ls","ports":"5050","startScript":"dotnet run --project /usercode/OpenIddictAuthProvider/OpenIddictAuthProvider.csproj &\nuntil $(curl --output /dev/null --silent --head --fail http://localhost:3000); do\n printf '.'\n sleep 5\ndone\ndotnet run --project /usercode/DemoApp/DemoApp.csproj &\ndotnet run --project /usercode/SecondaryApiApp/SecondaryApiApp.csproj","https":false,"forceRelaunchOnRun":true,"runInLiveContainer":true},{"key":"rg_gF4PRlnjkoi3iNZ1v1","jobType":"Live","name":"Blazor WebAssembly OIDC","inputFileName":"Program.cs","runScript":"ls","ports":"5050","startScript":"sed -i -e 's@xxxxx@'\"$EDUCATIVE_LIVE_VM_ALT_SERVER_URL\"'@g' /usercode/DemoApp/wwwroot/appsettings.json &&\ndotnet run --project /usercode/OpenIddictAuthProvider/OpenIddictAuthProvider.csproj &\nuntil $(curl --output /dev/null --silent --head --fail http://localhost:3000); do\n printf '.'\n sleep 5\ndone\ndotnet run --project /usercode/DemoApp/DemoApp.csproj","https":false,"forceRelaunchOnRun":true,"runInLiveContainer":true},{"key":"KkZgpE6uBIh5OM2cCu0hU","jobType":"Live","name":"Client and back-end","inputFileName":"Program.cs","runScript":"ls","ports":"5050","startScript":"dotnet run --project /usercode/DemoApp/DemoApp.csproj &\ndotnet run --project /usercode/SecondaryApiApp/SecondaryApiApp.csproj","https":false,"forceRelaunchOnRun":true,"runInLiveContainer":true}],"testRunners":[],"version":3,"loaded":true},"discounted_price":29,"cover_image_id":5388576943112192,"cover_image_metadata":"{\"width\":1024,\"height\":512,\"sizeInBytes\":19460,\"name\":\"Single Sign-on Authentication and authorization in ASP.NET Core.png\"}","cover_image_serving_url":"/v2api/collection/6586453712175104/5945896371748864/image/5388576943112192","tags":["ASP.NET Core",".NET Applications","C#","Single Sign-On"],"intro_video_url":"","intro_video_thumbnail_url":null,"aggregated_widget_stats":{"projects":0,"assessments":0,"cloudlabs":0,"WebpackBin":43,"codeExerciseCount":0,"codeRunnableCount":43,"codeSnippetCount":156,"illustrations":52,"SlateHTML":304,"DrawIOWidget":51,"EditorCode":141,"Code":15,"Quiz":8,"SpoilerEditor":7,"Columns":1},"default_themes":{"code_themes":{"Code":"default","Markdown":"default","RunJS":"default","SPA":"default","isForced":{"Code":false,"Markdown":false,"RunJS":false,"SPA":false}}},"api_keys":{"api_keys":[]},"skills":[],"testimonials":[],"licensing":null,"target_audience":"intermediate","author_id":"6586453712175104","collection_id":"5945896371748864","approval_status":3005,"price":29,"is_private":false,"path_type":"regular","organization_id":null,"is_mini":false,"is_priced":true,"brief_summary":"Delve into using Single Sign-On (SSO) to secure ASP.NET Core applications, including MVC, web API, and more. Discover protocols, configuration, and securing pages and endpoints.","approval_update_time":"2024-04-09T08:17:47.890Z","udata_files":[],"CodeThemes":{"Code":"default","Markdown":"default","RunJS":"default","SPA":"default","isForced":{"Code":false,"Markdown":false,"RunJS":false,"SPA":false}},"is_marked_for_deletion":false,"transition_page_title":"","is_redirectable":false,"collection_type":"collection","adaptive_learning_mode":false,"HLOs_to_toc":{},"is_guide":false,"read_time":90000,"allow_logged_out_executions":false,"unique_live_widget_urls":false,"metadata_status":101},"pageSummarySSR":{"title":"Summary","description":"Review the summary of the course you have completed.","discourse_page_url":"https://discuss.educative.io/tag/summary__wrapping-up__using-single-sign-on-for-securing-applications-in-aspnet-core?open=true&ctag=using-single-sign-on-for-securing-applications-in-aspnet-core__fiodar-sazanavets&cslug=using-single-sign-on-for-securing-applications-in-aspnet-core&pslug=summary"},"adaptiveLearningConfigConstantSSR":0,"enableLessonPageLockedBannerV2":true,"allowAllLessonPreview":false,"lockedBannerStatsSSR":{"b2cTrialStats":{"is_b2c_trial_active":true,"b2c_trial_active_duration":7,"b2c_trial_categories":"$2b"},"b2cStatus":100,"learnerTags":"$2c","workStats":1430,"interviewWorksStats":76,"inL2cStarterPack":false,"l2cWorkStats":38,"enableL2cStarterPackPaymentWidget":"true"},"pageTocSSR":"","authorId":"6586453712175104","collectionId":"5945896371748864","pageId":"4513640474214400","isCollectionPageLockedCachingEnabled":true,"aceFeatureFlags":{"enableAceEditor":true,"enableAceEditorForAnswers":true},"meta":{"type":["Article","TechArticle"],"title":"Summary","name":"Using Single Sign-On for Securing Applications in ASP.NET Core","description":"Review the summary of the course you have completed.","image":"https://educative.io/api/collection/6586453712175104/5945896371748864/image/5388576943112192.png","isAccessibleForFree":false,"keywords":"$2c","provider":"Educative","publisher":"Educative","id":"courses/using-single-sign-on-for-securing-applications-in-aspnet-core/summary","author":"Educative","educationalLevel":"intermediate","noIndex":false,"isForcedNoIndex":false,"noFollow":false,"redirectInfo":{"isDeletedCollectionPageRedirectable":false},"page_titles":"$2d","is_marked_for_deletion":false,"transition_page_title":"","is_redirectable":false,"deleted_course_lesson_redirect":{"author_id":null,"collection_id":null,"page_id":null,"redirect_url_slug":null},"metadata_status":101,"additional_course_alternatives":[]},"requestUrl":"/courses/using-single-sign-on-for-securing-applications-in-aspnet-core/summary","requestUrlInfo":{"authorId":"6586453712175104","collectionId":"5945896371748864","pageId":"4513640474214400","courseUrlSlug":"using-single-sign-on-for-securing-applications-in-aspnet-core","pageUrlSlug":"summary"},"isExternalContent":false}}],[["$","script",null,{"id":"generate-data","type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"$2e"}}],false,"$undefined"]]