Full Stack Web Development

W13 What’s New in ASP.NET Core 2.2 to Secure Web Applications and APIs


3:00pm - 4:15pm

Level: Intermediate

Brock Allen

Application Security Architect


ASP.NET Core has upped its game for security web applications and APIs in release 2.2. Visual Studio will now have a security option for SPA and API templates out of the box. This session shows how ASP.NET Core is using OpenId Connect and OAuth2 using the popular IdentityServer open source framework to provide this security. We will explain the basics of these protocols, how ASP.NET Core is wrapping the IdentityServer framework, and how to extend that configuration for more advanced scenarios.

You will learn:

  • The basics of OpenId Connect and OAuth2
  • How your applications are protected with these protocols
  • How ASP.NET Core configures IdentityServer to implement OpenId Connect and OAuth2