Contents tagged with Security
-
Token Based Authentication in Dotnet Core 3.0
APIs are now the standard for building and integrating modern applications. It also evolved as the key enabler in conducting risk-free legacy modernization and they become engines of innovation. In addition, exposing the services via APIs allows organizations to reach a larger audience, expand into new areas, and reuse existing assets. Providing security to these APIs is one of the main concerns. In this post, we will talk about using Token Based Authentication in Dotnet Core.
-
Policy based authorization in ASP.NET Core
In my previous article, I explained about restricting users based on the IP Address. It was implemented by using a whitelist of IP Address and middleware. The solution helps authorize users on application level. I also mentioned that, I will write another article to explain about restricting users on a controller level or action level. Policy based authorization is a new feature introduced in Dotnet Core that allows you to implement the application authorization rules in code. In this post, I will explain about Policy based authorization in ASP.NET Core with an implementation example.
-
Restrict IP Address ASP.NET Core Web API
There are several ways to restrict access to a Web server based on the requestor’s IP address. We can do that from IIS or using inbound Firewall rules. But If you want to restrict access to one of the application deployed in the server based on the IP Address then you have to achieve that programmatically. In this post, i will guide you on how to restrict IP address in ASP.NET Core
-
Azure Bastion
Microsoft recently announced public preview of Azure Bastion, a managed PaaS service which provides RDP and SSH connectivity through a browser to access Azure VMs. It eliminates the need of a public IP address assign to the VM. Azure Bastion is deployed in the Virtual Network and provides RDP/SSH provision for all the VMs in the same Virtual Network.
-
Restrict IP Address in ASP.NET Web API
There are several ways to restrict access to a Web server based on the requestor’s IP address either from IIS or using inbound Firewall rules. But If you want to restrict access to one of the applications deployed in the server based on the IP Address then you have to achieve that programmatically.