ASP.NET MVC 5 Identity: Authentication and Authorization
1h 30mIntermediate2018-08-28
Authors

Ervis Trupja
Full-Stack .NET Web Developer with a mathematical background
Course details
Authentication and authorization are core features of many modern apps. So why reinvent the wheel, forcing your users to create yet another login? Leveraging credentials from trusted platforms like Facebook and Google, you can save yourself precious development time and improve the user experience. This course shows how to authenticate and authorize users of your ASP.NET MVC 5 applications using .NET methods as well as third-party frameworks. Instructor Ervis Trupja discusses the options for identity management in ASP.NET MVC 5, showing how to implement third-party authentication in your app with Facebook, Twitter, Google, Microsoft, and GitHub. He shows how to set up email confirmation and two-step authentication and control levels of authorization for users. Finally, he discusses how to secure ASP.NET apps against the seven most common vulnerabilities.
Learning objectives
Identity management
Authentication vs. authorization
Authentication via Facebook, Google, Microsoft, and more
Email confirmation
Two-step authentication
Simple, role-based, and view-based authorization
Defending against vulnerabilities
Learning objectives
Identity management
Authentication vs. authorization
Authentication via Facebook, Google, Microsoft, and more
Email confirmation
Two-step authentication
Simple, role-based, and view-based authorization
Defending against vulnerabilities
Skills covered
ASP.NET MVCASP.NETIdentity and Access ManagementC#Back-End Web DevelopmentFull-Stack Web DevelopmentFront-End Web DevelopmentCybersecurityWeb DevelopmentMicrosoftDeep Dive (X:Y)
Concepts
0. Introduction
- 01 - Improve user experience with third party authentication
- 02 - What you need to know
1. Identity Management
- 03 - Membership in ASP.NET
- 04 - ASP.NET Identity
- 05 - Identity demo
- 06 - Authentication vs. authorization
- 07 - Common vulnerabilities in applications
2. Authentication
- 08 - Understand authentication and authentication options
- 09 - Create a new ASP.NET MVC 5 application
- 10 - Facebook authentication
- 11 - Twitter authentication
- 12 - Google authentication
- 13 - Microsoft authentication
- 14 - GitHub authentication
- 15 - Configure Windows authentication
- 16 - Email confirmation setup - SendGrid
- 17 - Email confirmation in action
- 18 - Two-factor authentication with SMS setup - Twilio
- 19 - Two-factor authentication with SMS in action
3. Authorization
- 20 - Understand authorization and authorization types
- 21 - Simple authorization
- 22 - Role-based authorization
- 23 - View-based authorization
- 24 - View-based authorization using the view model
4. Security
- 25 - Vulnerability - Object binding vulnerability
- 26 - Vulnerability - Dangerous uploaded file type
- 27 - Vulnerability - Excessive authentication attempts
- 28 - Vulnerability - XSS filter evasion
- 29 - Vulnerability - Inclusion of third-party ccripts
- 30 - Vulnerability - Cross-site request forgery (CSRF)
- 31 - Vulnerability - Open redirect
Conclusion
- 32 - Next steps
Related courses
- ASP.NET MVC 5 Essential Training
- Building React and ASP.NET MVC 5 Applications
- ASP.NET MVC: HTTP Request Life Cycle
- ASP.NET MVC: Building for Productivity and Maintainability
- Learning ASP.NET Core: MVC, Razor Pages, Web APIs & Other Foundations
- ASP.NET Core New Features
- Learning ASP.NET
- Building Real-Time Web Apps with SignalR 2
Related learn paths
- Getting Started as an ASP.NET Developer
- Advance your ASP.NET Developer skills
- Prepare for the MTA: Software Development Fundamentals Exam (98-361)
- Getting Started as an ASP.NET Core Developer
- Prepare for the Microsoft Azure Administrator (AZ-104) Exam
- Become a Back-End Web Developer
- Explore Web Development with Node.js
- Become a MEAN Javascript Developer