Teach on Udemy

Turn what you know into an opportunity and reach millions around the world.

Learn More

Your cart is empty.

Keep shopping

Securing Microservices in AspNetCore World(netcore5)

Name: Securing Microservices in AspNetCore World(netcore5)
Rating: 4.5 (7 reviews)

Turn IdentityServer4 Into an Enterprise Authorization Server for Your Apps

Created byF. Frank Ozz

Last updated 8/2021

English

What you'll learn

Developing Secure Microservices using AspNetCore5 and IdentityServer4

Course content

16 sections • 41 lectures • 5h 16m total length

Course Introduction-General1:06

SecuringMvcWebClientProject-Introduction5:25
Authorization Code Flow Steps3:45
Explore the authorization code flow for securing a web client in ASP.NET Core, detailing steps from login and user consent to token exchange, token usage, and API validation.
Configuring AuthServer adding the MvcWeb Client for Authorization Code Flow4:02
Configuring the Mvc Web Client for Authorization Code Flow6:56
Testing the Mvc Web Client Project Security5:21
Test the MVC web client security by starting the authorization server, signing in as a test user, approving consent, and inspecting the resulting tokens, claims, and cookie properties.
Testing the Mvc Web Client Project Security with PKCE Added4:58
Logging-in and Logging-out from Projects5:37
Creating Additional Claims7:13
Configure OpenID Connect to retrieve and map additional claims, shown on the privacy page, without bloating the ID token; ensure sub remains the name identifier, and use claims for authorization.
Role-Based Authorization- Mvc Web Project8:47
Securing Mvc Web Client and JobsApi Together-Role Based Authorization15:43

Requirements

Intermediate programming skills in C# programming language

Description

This course is a very detailed course which is unique in the sense that it covers all aspects of security and user management in the microservices world.

What you will learn in this course specifically as follows:

You will learn how to develop applications using AspNet Core 5 and ORM tool Entityframeworkcore 5

You will learn how a code-first approach is used to create databases and its tables corresponding to your model classes.

How to develop simple microservices applications and secure them with specific protocols.

Learn the two important security protocols (OAuth2 and OpenId Connect) used nowadays in microservices architectures

You will learn how to add the latest state-of the art security mechanism called PKCE to enhance the security of your apps.

How to secure microservices with a state of the art Centralized Authorization Server which implements the above two security protocols

How to make microservices communicate with each other either using direct call over the wire by HttpClient.

How to build User Management additions into the Authorization Server with role based authorization

How to use RabbitMq and Masstransit for communication between microservices over messaging without tight coupling

How to incorporate Serilog logging into the Authorization Server for better and structured logging onto the console.(You can extend the same functionality into the other microservices by following the same procedure)

How to use the new Microsoft technology Tool Microsoft Tye for easy development and deployment of microservices

Learn to use Microsoft Tye's service discovery functionality

Learn to use the dashboard that Microsoft Tye provides automatically for observing the elements(microservices, db servers etc.) of the application and the logs created automatically

Learn to use tye.yaml file structure that replaces docker-compose.yaml files for microservices orchestration.

Every detail towards our final goal is shown and explained in clear terms during the course.

I hope you buy the course and enter into the world of safeguarding your applications with the best technology and tools available out there.

Who this course is for:

Developers curious about microservices and how to secure them

Securing Microservices in AspNetCore World(netcore5)

What you'll learn

Explore related topics

Course content

Course Intro1 lecture • 1min

Security in Microservices World3 lectures • 6min

Why is a Centralized Security Structure Needed?5 lectures • 21min

IMPLEMENTING A CENTRALIZED AUTHORIZATION SERVER4 lectures • 33min

Building Our JobsApi WebApi That Needs Protection4 lectures • 56min

Protecting JobsApi3 lectures • 22min

Creating and Building MvcWebClient Project3 lectures • 23min

SECURING MVC WEB CLIENT PROJECT10 lectures • 1hr 8min

Section 9- MIGRATING AUTHSERVER CONFIGURATION TO DATABASE1 lecture • 16min

Section 10-ASPNET CORE IDENTITY INTEGRATION WITH AUTHSERVER1 lecture • 10min

Requirements

Description

Who this course is for: