OAuth 2.0 and OpenID Connect and SSO, Oh My! This can be hard to do on your own.

Are you building your own security into your applications? If you are STOP!

Join me as I walk you through how to use IdentityServer4 to secure your API’s, MVC applications, services, and mobile applications.

In this talk, we learn about the security specifications that IdentityServer4 supports, such as OAuth 2.0 and OpenID Connect. We then cover some best practices for the various type of clients we use in technology solutions. We then learn how to implement and integrate with IdentityServer4 using common clients and API’s.

Intro

• What is OAuth 2.0?
• What is OpenID Connect?
• What is SSO (Single Sign-On & Single Sign-Off)?

Review of best practices

• Authentication vs. Authorization
• Where do I get the users claims?
• How often should I check for updated Authorization claims?
• What authentication flow is right for my application?

Demos

Live demonstration of IdentityServer4 providing Authentication for .NET Core 3.0 API. We will show how to configure a C# MVC client, an Azure Function, a console process, a JavaScript client, Xamrin Mobile App to access the API.

I have spent the last three years working with Azure as an Application or Cloud Architect. My recent focus has been on building long-term strategies on how to migrate existing applications to the cloud. In addition, I am a Microsoft Certified Azure Architect.

I started speaking in 2018 at local meetups (Fort Smith, AR; Little Rock, AR; Tulsa, OK) and presented at my first conference Little Rock Tech Fest 2019.

I have done this presentation for Fort Smith Tech Users Group, Little Rock .NET Users Group, and Little Rock Tech Fest 2019.