Azure trainings!
Infused with experience from the field, brought with lots of passion!

API SECURITY FOR DUMMIES | The different actors

API SECURITY FOR DUMMIES | The different actors

API Security with ASP.NET Core 5.0 and Azure AD for Dummies This blog is part of a complete blog series. Part 1: Authentication vs authorization Part 2: The different actors (this blog) Part 3: Authentication with Azure AD Part 4: Authorization with Access Control...
API SECURITY FOR DUMMIES | Authentication vs authorization

API SECURITY FOR DUMMIES | Authentication vs authorization

API Security with ASP.NET Core 5.0 and Azure AD for Dummies This blog is part of a complete blog series. Part 1: Authentication vs authorization (this blog) Part 2: The different actors Part 3: Authentication with Azure AD Part 4: Authorization with Access Control...
Securely distributing client secrets within the organization

Securely distributing client secrets within the organization

The weakest link in security is the human element.  This statement gets regularly confirmed, when we are setting up OAuth2 or Open ID Connect at a customer.  This blog explains the security issue and how you can overcome it with some very little effort. The problem In...
Role-based access control in Logic Apps

Role-based access control in Logic Apps

Since recently, Logic Apps has the ability to configure OAuth2 authorization on the HTTP trigger.  You can define authorization policies, that perform basic validations on the claims inside the incoming Bearer token. Role-based access control When securing API...
Managed Identity simplified with the new Azure .NET SDKs!

Managed Identity simplified with the new Azure .NET SDKs!

As you might know, Microsoft is working hard to create brand new SDKs for most of its services.  The goal of this effort is to simplify development, increase productivity, introduce uniformization across SDKs and to focus hard on documentation and samples.  An...