Authentication and Authorization in ASP.NET Core
ASP.NET Core Identity, OpenID Connect, the BFF pattern, JWT, policies and data protection.
The demo application is Globomantics, a fictional MVC application that manages conferences and talk proposals.
Authentication: verifying the identity of a user (passport → password).
Authorization: controlling what an authenticated user can do.
Sign in to read this course
A free account unlocks all 514 courses. 20 are readable without one.
What's inside
17 sections- 1 Table of Contents
- 2 Course Overview
- 3 Authentication Fundamentals
- 4 ASP.NET Core Identity
- 5 Multi-Application Authentication with OpenID Connect
- 6 Authentication for Single-Page Applications (BFF)
- 7 Authorization Policies
- 8 Key Concepts Summary
- 9 JWT Bearer Authentication (APIs)
- 10 OAuth 2.0 — Client Credentials Flow
- 11 Data Protection API
- 12 Anti-Forgery Tokens and CORS
- 13 Review Questions
- 14 Advanced Authorization Scenarios
- 15 Security Best Practices
- 16 Review Questions — Part 2
- 17 Resources
More Authentication & Security courses
View all 5Securing ASP.NET Core 10 with OAuth2 and OpenID Connect
OAuth2/OIDC with Duende IdentityServer — claims, API security, token revocation and the BFF pattern.
Securing ASP.NET Core with OAuth2 and OpenID Connect
Authorization code flow with PKCE, claims, refresh tokens, ASP.NET Core Identity, federation and MFA.
Authentication and Authorization in ASP.NET Core 10 Blazor
Secure a Blazor Web App with Identity, render-mode-aware auth state, Entra ID and policies.
Authentication and Authorization in ASP.NET Core Blazor
Blazor render modes and security, Identity UI, AuthenticationStateProvider, Entra ID and RBAC vs ABAC.
Interested in this course?
Contact us to book it or get a custom training plan for your team.