Dealing with Credentials When Securing an ASP.NET Core 3 Application
In this course you'll learn best practices regarding user and password management, integrating with third-party providers like Facebook, setting up federation and implementing multi-factor authentication.
What you'll learn
Implementing multi-factor authentication is critical for user management. In this course, Dealing with Credentials When Securing an ASP.NET Core 3 Application, you will gain the ability to integrate with third-party providers. First, you'll explore best practices in regards to dealing with users and credentials. Next, you'll learn how to integrate IdentityServer with a custom user database. Finally, you'll learn about user management and integrating with social providers like Facebook. When you're finished with this course, you'll have the skills and knowledge of MFA needed to safely deal with credentials and users.
Table of contents
- Coming Up 0m
- Designing a User Database Schema 4m
- Demo - Designing a User Database Schema 6m
- Demo - Creating a User Database Schema 4m
- Interacting with IdentityServer 2m
- Demo - Inspecting UI Interaction with IdentityServer 7m
- Demo - Inspecting the User Service 2m
- Demo - Integrating IdentityServer with a Custom User Database 4m
- Building Your Identity with a Profile Service 1m
- Demo - Building Your Identity with a Profile Service 4m
- Summary 2m
- Coming Up 1m
- User Identity, Application Users, and Application User Profiles 5m
- OIDC Flow with Application User Profile Call 1m
- Demo - User Identity, Application Users, and Application User Profiles (Client) 9m
- Demo - User Identity, Application Users, and Application User Profiles (API) 3m
- Implementing User Registration 1m
- Demo - Implementing User Registration 8m
- Application User Profile Initialization Strategies 2m
- Demo - Initializing an Application User Profile 2m
- Safely Storing Passwords 7m
- Demo - Safely Storing Passwords 5m
- Activating an Account 2m
- Demo - Activating an Account 7m
- Resetting Passwords 1m
- Demo - Sending a Password Reset Request 4m
- Demo - Handling a Password Reset Request 5m
- Additional User Management Related Best Practices 3m
- Password Policy Best Practices 2m
- Summary 1m
- Coming Up 1m
- Federation with Third-party Identity Providers 3m
- Demo - Inspecting Support for External Identity Providers 4m
- Demo - Registering an Application on Facebook 2m
- Demo - Integrating Facebook Authentication 6m
- Claims Transformation 1m
- Challenges When Integrating with Third-party Identity Providers 3m
- Integrating with Additional Third-party Identity Providers 1m
- Summary 1m
- Coming Up 1m
- Integrating Local Users with External Users 1m
- Federated Authentication and Federated Identity 4m
- Demo - Enhancing the Database Schema for Federated Identity 2m
- Demo - Provisioning a New User With a Federated Identity 8m
- Demo - Transforming Claims 4m
- Demo - Asking for Additional Information on User Provisioning 9m
- Demo - Linking a Provider to an Existing User 6m
- Additional Federated Identity Use Cases 1m
- Summary 2m
- Coming Up 1m
- Introducing Multi-factor Authentication 2m
- Supporting MFA with a One-time Password (Through Email) 2m
- Demo - Supporting MFA with a One-time Password (Through Email) 8m
- (Dis)advantages of MFA with a One-time Password Through Email 1m
- Supporting MFA with an Authenticator Application 5m
- Demo - Supporting MFA with an Authenticator Application (Enhancing the Database Schema) 2m
- Demo - Supporting MFA with an Authenticator Application (Registration) 9m
- Demo - Supporting MFA with an Authenticator Application (Authentication) 2m
- Additional Use Cases 2m
- Summary 1m
About the author
Kevin Dockx is a freelance solution architect, author & consultant, living in Antwerp (Belgium). He's mainly focused on solution/application architectures & security for web-based (API) applications built with .NET, but he also keeps an eye out for new developments concerning other products from the .NET stack. He's a Microsoft MVP and board member of the RD MS Community. He's also a regular speaker at various (inter)national conferences & user group events, and works on various open source pro... more