ASP.NET Core Identity: Authorization Management
1h 28mAdvanced2019-04-25
Authors

Ervis Trupja
Full-Stack .NET Web Developer with a mathematical background
Course details
Authenticating users and authorizing their level of access is a key component to any application. In this course, learn how to authorize varying levels of access and add layers of security to your ASP.NET Core applications. Instructor Ervis Trupja shows how to authorize users in .NET Core using a simple, role-based model, as well as a rich, policy-based model. Throughout the course, he covers how to add requirements to an authorization policy, use handlers for one or multiple requirements, and create custom authorized attributes. To wrap up, he demonstrates how to use imperative authorization and write a resource-based handler.
Learning objectives
Different authorization types
Applying the Authorize and AllowAnonymous attributes
Adding role checks
Claims-based and policy-based authorization
Creating and using custom attributes
Using imperative authorization
Writing a resource-based handler
Learning objectives
Different authorization types
Applying the Authorize and AllowAnonymous attributes
Adding role checks
Claims-based and policy-based authorization
Creating and using custom attributes
Using imperative authorization
Writing a resource-based handler
Skills covered
ASP.NET CoreBack-End Web DevelopmentFull-Stack Web DevelopmentFront-End Web DevelopmentWeb DevelopmentMicrosoftDeep Dive (X:Y)
Concepts
0. Introduction
- 01 - Securing ASP.NET Core apps with authorization
- 02 - What you should know
1. Getting Started
- 03 - What is authorization
- 04 - ASP.NET Core authorization types
- 05 - ASP.NET Core authorization namespaces
2. Simple and Role-Based Authorization
- 06 - Authorize and AllowAnonymous attributes
- 07 - Adding role checks
- 08 - Policy-based role checks
3. Claims-Based and Policy-Based Authorization
- 09 - Adding claims checks
- 10 - Authorization policy requirements
- 11 - Working with authorization handlers
- 12 - Analyzing handler results
- 13 - Using a func to fulfill a policy
4. Authorization Policy Providers
- 14 - Custom authorization attributes
- 15 - Using custom IAuthorizationPolicyProvider
- 16 - Default policy
5. Resource-Based and View-Based Authorization
- 17 - Using imperative authorization
- 18 - Writing a resource-based handler
- 19 - Injecting and using authorization in a view
Conclusion
- 20 - Next steps
Related courses
- ASP.NET Core Identity: Authentication Management
- ASP.NET Core: Token-Based Authentication
- ASP.NET MVC 5 Identity: Authentication and Authorization
- Advanced Web APIs with ASP.NET Core 8
- Building Applications with Angular, ASP.NET Core, and Entity Framework Core
- ASP.NET Core: Exception Handling
- Microsoft XAML: 1 Core Concepts
- ASP.NET Core in .NET 6: Dependency Injection
Related learn paths
- Getting Started as an ASP.NET Developer
- Prepare for the Microsoft Azure Administrator (AZ-104) Exam
- Prepare for the MTA: Software Development Fundamentals Exam (98-361)
- Getting Started as an ASP.NET Core Developer
- Become a Back-End Web Developer
- Explore Web Development with Node.js
- Become a MEAN Javascript Developer
- Explore App Development with the MERN Stack