ASP.Net 9.0: Authentication Enhancements

The article demonstrates new features related to authentication and authorization. These enhancements aim to improve security and streamline the process of verifying user identities and granting access.

OIDC and OAuth Parameter Customization

The OAuth and OpenID Connect (OIDC) authentication handlers now offer an AdditionalAuthorizationParameters option. This feature simplifies the customization of authorization message parameters typically included in the redirect query string. Previously, achieving this level of customization required implementing a custom OnRedirectToIdentityProvider callback or overriding the BuildChallengeUrl method within a custom handler. However, with the latest improvements, developers can achieve the same result more succinctly.

Example

In previous versions of .NET, achieving custom parameter customization looked like this:

builder.Services.AddAuthentication().AddOpenIdConnect(options =>

{

    options.Events.OnRedirectToIdentityProvider = context =>

    {

        context.ProtocolMessage.SetParameter(“prompt”, “login”);

        context.ProtocolMessage.SetParameter(“audience”, “https://api.example.com”);

        return Task.CompletedTask;

    };

});

Now, with the simplified approach, you can achieve the same result as follows

builder.Services.AddAuthentication().AddOpenIdConnect(options =>
{
options.AdditionalAuthorizationParameters.Add(“prompt”, “login”);
options.AdditionalAuthorizationParameters.Add(“audience”, “https://api.example.com”);
});

Configuring HTTP.sys Extended Authentication Flags

Windows authentication via HTTP.sys can now be fine-tuned using the EnableKerberosCredentialCaching and CaptureCredentials properties. These properties allow developers to optimize how HTTP.sys handles authentication. Specifically, you can configure the following flags:

HTTP_AUTH_EX_FLAG_ENABLE_KERBEROS_CREDENTIAL_CACHING: Enables Kerberos credential caching for improved performance.

HTTP_AUTH_EX_FLAG_CAPTURE_CREDENTIAL: Captures user credentials during the authentication process.

Example:

webBuilder.UseHttpSys(options =>

{

    options.Authentication.Schemes = AuthenticationSchemes.Negotiate;

    options.Authentication.EnableKerberosCredentialCaching = true;

    options.Authentication.CaptureCredentials = true;

});

Clap if you believe in unicorns & well-structured paragraphs! 🦄📝

Socials: C# Publication | LinkedIn | Instagram | Twitter | Dev.to

Stiri similare

Chicago woman charged with biting cop at Hammond Walmart

Así ha sido el último punto de Nadal en el Mutua Madrid Open y sus partidos contra Djokovic y Federer en la Caja Mágica

Daily News boys athlete of the week: Dylan Volantis, Westlake

The Cheyenne Supercomputer is going for a fraction of its list price at auction right now

City celebrates townhome transformation in Nob Hill

Top battleground Senate race heats up as party-backed Republican faces onslaught from former Trump official

ASP.Net 9.0: Authentication Enhancements

OIDC and OAuth Parameter Customization

Example

Configuring HTTP.sys Extended Authentication Flags

Example:

Clap if you believe in unicorns & well-structured paragraphs! 🦄📝

Socials: C# Publication | LinkedIn | Instagram | Twitter | Dev.to

Related

Leave a Reply Cancel reply

OIDC and OAuth Parameter Customization

Example

Configuring HTTP.sys Extended Authentication Flags

Example:

Clap if you believe in unicorns & well-structured paragraphs! 🦄📝

Socials: C# Publication | LinkedIn | Instagram | Twitter | Dev.to

Share on:

Related

Leave a Reply Cancel reply

Stiri similare