search

dotnet / EntityFramework.Docs

Documentation for Entity Framework Core and Entity Framework 6
https://docs.microsoft.com/ef/
Creative Commons Attribution 4.0 International
1.62k stars 1.96k forks source link

SFI initiative: recommend secure authentication flow #4788

Open Rick-Anderson opened 3 weeks ago

Rick-Anderson commented 3 weeks ago

Type of issue

SFI (Secure Future Initiative)

Description

See this internal link: SFI info in Teams MSFT wide initiative to recommend the most secure authentication flow. @tdykstra and @Rick-Anderson can PR these. I'll create an include file something like the following:

[!NOTE] This article uses a local database that doesn't require the user to be authenticated. Production apps should use the most secure authentication flow available. For more information on authentication for deployed test and production apps, see [Secure authentication flows](/aspnet/core/security/).

Addresses: https://github.com/dotnet/AspNetCore.Docs/issues/33226 Company wide initiative for ROPC After the .NET 9 GA can you make this a priority?

Issue or suggestion

ROPC: 35 Files in EntityFramework.Docs

Page URL

https://learn.microsoft.com/en-us/ef/core/miscellaneous/multitenancy

Content source URL

https://github.com/dotnet/EntityFramework.Docs/blob/main/entity-framework/core/miscellaneous/multitenancy.md

Document Version Independent Id

bb29a2b6-c401-287f-2da9-1aeb3c633b41

Article author

@JeremyLikness

tdykstra commented 3 weeks ago

In the include file, explain why it matters after the sentence about not using a password.

Rick-Anderson commented 3 weeks ago

In the include file, explain why it matters after the sentence about not using a password.

I updated it with your version.

Rick-Anderson commented 3 weeks ago

@roji @ajcvickers please review

AndriySvyryd commented 3 days ago

LGTM