Udemy

Platform

English

Language

Software Engineering

Category

Building Microservices with .NET - Security and Identity

Secure your microservices architecture with C#, OAuth 2.0, OpenID Connect, ASP.NET Core Identity and IdentityServer.

4.44 (66 reviews)

Students

5.5 hours

Content

Jun 2021

Last Update
Regular Price


What you will learn

Stand up an authorization server and OpenID provider via IdentiyServer

Implement the OAuth 2.0 authorization code flow with PKCE

Secure your microservices with ASP NET Core authentication and authorization

Create an Identity microservice to manage user identity and secure all microservices

Scaffold user registration and login UI components via ASP NET Core Identity

Generate and use JSON Web Tokens in Postman

Implement authentication via OpenID Connect

Use the .NET Secret Manager to store secrets during local development

Implement role-based and claims-based security

Integrate secure microservices with a real world React based single page application


Description

You know the basics, but there are still many questions to answer: How will your users register and sign in to your system? How can your microservices protect themselves against unauthorized access? What permissions do your users have across the different microservices? Take your microservices architecture to the next level by adding a fundamental component: Security.

In this course you will standup a brand new microservice, the Identity microservice. This service will allow users to register and sign in to the system via the ASP.NET Core Identity membership system, as well as act as an authorization server and an OpenId provider thanks to its integration with IdentityServer. With that, all microservices will be protected using modern authorization protocols like OAuth 2.0 and OpenID Connect, the de-facto standards for securing microservices these days.

Here for some of the things you will learn in this course:

  • Create an Identity microservice

  • Scaffold user registration and login UI components via ASP.NET Core Identity

  • Stand up an authorization server and OpenID provider via IdentiyServer

  • Generate and use JSON Web Tokens in Postman

  • Implement authentication via OpenID Connect

  • Implement the OAuth 2.0 authorization code flow with PKCE

  • Secure your microservices with ASP.NET Core authentication and authorization

  • Use the .NET Secret Manager to store secrets during local development

  • Implement role-based and claims-based security

  • Integrate secure microservices with a real world React based single page application

This course starts right were we left off in my Building Microservices with .NET: The Basics course. Please take that course first since it provides foundational microservices concepts and that's were we implement the two microservices you will secure in this course. Other than that, some basic C# knowledge would be handy.

This is a beginner level course, so I intentionally take my time to explain every new concept in a very didactic way to ensure you understand the purpose of the code you are about to write. You will find no magic code copied from external or hidden sources. I will explain every line of code as I add them to the projects.

I make no assumptions on your previous knowledge of security in ASP.NET Core apps or of any of the libraries, tools and techniques used during the course. As long as you are eager to learn by doing, I think you will really enjoy this course since I will explain everything I do as we write the code together.

By the end of this course you will have a fully working Identity microservice, your users will be able to register and sign in to the system and both the microservices created in the previous course will be properly secured. But most importantly you will understand every line of code, you will know how to secure your microservices and why we ended up with the final implementation.


Screenshots

Building Microservices with .NET - Security and Identity
Building Microservices with .NET - Security and Identity
Building Microservices with .NET - Security and Identity
Building Microservices with .NET - Security and Identity

Content

Introduction

Course Introduction

A look at the final solution

Source code and other course downloads

Identity in Microservices

Introduction

Introduction to ASP.NET Core Identity

Creating the Identity microservice

Integrating ASP.NET Core Identity with MongoDB

Adding the Users REST API

Microservices Security Patterns and Techniques

Introduction

Microservices authentication

Introduction to OAuth 2.0

Introduction to OpenID Connect

Introduction to IdentityServer

Implementing Microservices Security

Introduction

Setting up IdentityServer

Requesting tokens via Postman

Understanding JSON Web Tokens

Securing the Catalog microservice

Generalizing how to add authentication to microservices

Securing the Inventory microservice

Securing the Identity microservice

Authorization in Microservices

Introduction

Storing secrets during local development

Understanding Authorization in ASP.NET Core

Seeding users and roles

Adding users to the Player role

Implementing role-based authorization

Implementing claims-based authorization


Reviews

C
Camsley3 September 2021

Perfect course on securing microservices, Well amplifying communication between services. On the other hand it would miss just one example on an example heroku deploiment of the microservice. In order to have a complete training on the design of a complete dotnet microservice with its deployment still in Development mode.

R
Randa17 August 2021

This course is really great. The content is simple, easy to follow and understand for beginners. Also, it is comprehensive so you get all the basics about security in microservices. I really touched that there was a hard work in the preparation for launching this course. Thank you so much!

J
Jot13 August 2021

Perfect course (although my brain is nearly blocked by the time). Best thing is the always corresponding set of Resources!

J
Jonas12 July 2021

A fine course with a good teacher, but for me it was to project specific. I was hoping to end up with a stand alone IdentityServer that had nothing to do with the project's goals. It is difficult to move on, from here, if the project is not very reminiscent to this.

Y
Yessenia12 May 2021

This course is very interesting, it has information easy to understand and with very clear explanations in each topic.... 100% recommended to my colleagues and friends who are looking a optimal way to develop solutions with micro services.


4015726

Udemy ID

4/29/2021

Course created date

5/5/2021

Course Indexed date
Bot
Course Submitted by