Overview
This course covers the learning outcomes and goals of improving security in ASP.NET Core 2.0 by introducing new features and enhancements. Students will learn about the new authentication & authorization stack, ways to load balance cryptographic keys, and building a flexible authorization system for securing web apps. The course teaches skills such as setting up authentication handlers, working with cookies, implementing authorization requirements and policies, and configuring data protection. The teaching method includes demonstrations of new features, walkthroughs, and hands-on exercises. This course is intended for web developers and security professionals looking to enhance the security of their ASP.NET Core applications.
Syllabus
Introduction
Overview
Hosting
Limits
Authentication
Template Off
Authentication Handlers
Cookies
Context Authentication
Identity Cookies
Sign in and sign out
Validator
Demo
Multiple handlers
OpenID Connect
Options
Authorization
Requirements
Policy
Demo of Policy
Ginger
Summary
Handler
Authorization Service
Resource Based Authorization
Custom Parameters
Data Protection
Configuration Points
Configuration Services
Certificate
Backing Store
Cookie Sharing
CSRF Validation
Secrets
Taught by
NDC Conferences