Beskrivning
This course continues where our popular course Securing ASP.NET using OpenID Connect and IdentityServer with a clear focus on getting a complete IdentityServer architecture up and running in a real production environment. You will learn how to avoid many of the pitfalls and snags involved when you’re starting your deployment journey.
The solution you will deploy contains a client, an API, and a fully configured IdentityServer. We are especially proud that we don’t cheat or cut corners in this all-encompassing course.
Instead, we will, for example:
- Store configuration data in a separate configuration service
- Create logs in a separate logging server for analytics and visualization
- Use real HTTPS certificates
- Create our own token signing keys
- Use continuous deployment to deploy our services
Target audience
Developers who want to learn step-by-step how to securely deploy an IdentityServer solution to the internet. If you are using any of the previous versions of IdentityServer, this course is still very relevant, as many of the core concepts are the same.
Prerequisites
- A basic understanding of OAuth, OpenID Connect, IdentityServer, and ASP.NET Core
- Good C# skills
- Very basic Git version control skills
Practical information
Some practical details that can be good to know:
- We recommend that you have a suitable laptop that can run multiple instances of Visual Studio and at least one big monitor for the optimal experience
- You need to have Visual Studio 2022 version 17.4 or higher installed
- In this course, we use ASP.NET Core 7 and IdentityServer 6
- All course materials are written in English
- The course can be taught in either Swedish or English
- Though this course deals with the cloud and containers, it is not the focus of this course, and no cloud/container experience is needed
Agenda
In this course, we will cover the following:
- Configuration
- HTTPS certificates
- Security
- Logging
- Duende IdentityServer
- Error handling
- Securing the client
- Data Protection API
- Public/Private key encryption
- Keys, certificates, and PKCS 12 files
- Creating JWT signing keys using OpenSSL
- Token signing keys
- IdentityServer and the database
- User management
- Tokens and claims
- Securing the API
- Consuming the API
- Refresh tokens
- Extending IdentityServer
- Performance and service resiliency
- Troubleshooting IdentityServer
And much more…
Recensioner
Det finns inga recensioner än.