Open thangchung opened 6 years ago
We need to secure all the application layers like Enterprise Security API (ESAPI). https://github.com/convisoappsec/swingset-dotnet
Otherwise, we will invest time to work with authorization in each feature (Clean Architecture). Reference to this project for huge authorization requirements, but basically, we can see at https://github.com/blowdart/AspNetAuthorizationWorkshop/blob/master/src/Step_7_Resource_Based_Requirements/Startup.cs
Federated sign out also needs to invest time to have a look at https://brockallen.com/2016/02/09/federated-sign-out-and-identityserver3/ https://brockallen.com/2016/02/08/single-sign-out-and-identityserver3/
Nice explanation about OAuth 2.0 + OpenID Connect
Manual manipulating with Asp.Net Identity https://github.com/samueleresca/Blog.TokenAuthGettingStarted
We need to secure all the application layers like Enterprise Security API (ESAPI). https://github.com/convisoappsec/swingset-dotnet
Otherwise, we will invest time to work with authorization in each feature (Clean Architecture). Reference to this project for huge authorization requirements, but basically, we can see at https://github.com/blowdart/AspNetAuthorizationWorkshop/blob/master/src/Step_7_Resource_Based_Requirements/Startup.cs
Federated sign out also needs to invest time to have a look at https://brockallen.com/2016/02/09/federated-sign-out-and-identityserver3/ https://brockallen.com/2016/02/08/single-sign-out-and-identityserver3/
Nice explanation about OAuth 2.0 + OpenID Connect