Authentication and authorization is not a fun topic for most people. It's generally that thing that has to be there, but nobody really cares about. And on top of that, every time the requirements are a little different. And every time we have to figure out how to write all the plumbing to get it done properly. It is security after all. In ASP.NET Core, Microsoft has made it fairly easy to get it all done. In most cases, it is only a few lines of code and some minor configuration, and you are up going. However, if you don't know the lines of code and the config, it can be hard. This session will present a heap of different types of authN and authZ. There will be social logins, local logins, AD-based logins, and even token based authentication for SPAs. Basically, everything you need to get up and running when it comes to authenticating your users in ASP.NET Core.
You will learn:
- How authentication and authorization is set up in ASP.NET Core
- How outsourcing our authentication needs to 3rd parties can be both easy, and more secure than handling the credentials ourselves
- How OAuth and OpenID Connect can help us in a lot of our authentication scenarios