ASP.NET Core
Blazor .NET 7 BFF WASM & server(BlazorHosted.Server to start)
Using the Backend for frontend pattern to secure application using Azure AD
Improving application security in Blazor using HTTP headers
ASP.NET Core 7 Razor (AspNetCoreRazor)
Razor page application secured using Azure AD
Improving application security in an ASP.NET Core Razor Page using HTTP headers
ASP.NET Core 7 Razor mutliple tenants (AspNetCoreRazorMultiClients)
Sign-in using multiple clients or tenants in ASP.NET Core and Azure AD
Blazor .NET 7 BFF WASM & server(BlazorHosted.Server to start) & API secured with JWT
History
2023-03-11 Updated .NET 7, updates security headers, Update Microsoft.Identity.web
2022-06-12 Updated nullables, implicit usings, bootstrap 5, packages
2022-06-10 Updated nuget packages and BFF project
2022-02-11 Updated nuget packages and namespaces
2022-01-16 Updated nuget packages, code clean up
2022-01-05 Updated nuget packages
2021-11-21 Updated packages, improved Blazor CSP, removed inline style
2021-11-08 Updated .NET 6 release
2021-10-29 Updated packages
2021-10-02 Updated packages
2021-09-17 Updated .NET 6 packages added mixed auth Blazor & API example
2021-09-15 Updated .NET 6
2021-08-13 Added security headers
2021-08-09 Updated nuget packages
Links
https://github.com/AzureAD/microsoft-identity-web/wiki/multiple-authentication-schemes
https://github.com/AzureAD/microsoft-identity-web/wiki/customization#openidconnectoptions
https://github.com/AzureAD/microsoft-identity-web
https://docs.microsoft.com/en-us/aspnet/core/security/authentication
Security header links
https://csp-evaluator.withgoogle.com/
https://www.snigel.com/blog/a-simple-guide-to-coop-coep-corp-and-cors/
https://www.youtube.com/watch?v=J6BZ9IQELNA
https://github.com/andrewlock/NetEscapades.AspNetCore.SecurityHeaders
https://w3c.github.io/webappsec-trusted-types/dist/spec/
https://web.dev/trusted-types/
https://developer.mozilla.org/en-US/docs/Web/HTTP/Cross-Origin_Resource_Policy_(CORP)
https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS
https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
https://docs.google.com/document/d/1zDlfvfTJ_9e8Jdc8ehuV4zMEu9ySMCiTGMS9y0GU92k/edit