پیاده سازی مبحث پرکاربرد OAuth2 و OpenID در اپلیکیشن های مبتنی بر سرویس مانند Angular بر خلاف تصور کار دشواری نیست.

در این آموزش تصویری با استراتژی های OAuth2 و OpenID برای Angular و ASP.NET آشنا می شوید.
این دوره آموزشی محصول موسسه Pluralsight است.

سرفصل های دوره:

  • آشنایی با OAuth 2.0
  • مبانی OAuth 2.0
  • کار با IdentityServer V3
  • راه اندازی سرور
  • نحوه دسترسی به API
  • نحوه اعتبارسنجی داده ها
  • کار با Angular
  • اضافه کردن سربرگ در AngularJS
  • نحوه صدور مجوزها
  • نحوه به اشتراک گذاری داده ها
  • نحوه ایجاد حساب کاربری
  • نحوه اتصال به OpenID
  • ایجاد حساب کاربری
  • نحوه اتصال به سرویس گیرنده
  • نحوه خروج از سیستم MVC
  • نحوه اجازه دسترسی به MVC
  • نحوه ایجاد حساب کاربری
  • نحوه خروج از سیستم
  • توسعه API
  • کار با مجوزهای مبتنی بر Role
  • کنترل انقضا رمز عبور
  • کار با MVC و Angular
  • تغییر مسیر در Angular با IFrame
  • نحوه یکپارچه سازی برنامه
  • نحوه ورود به سیستم چندگانه
  • نحوه صحیح ورود داده ها
  • و…

عنوان دوره: Pluralsight OAuth2 and OpenID Connect Strategies for Angular and ASP.NET
سطح: متوسط
مدت زمان: 4 ساعت و 9 دقیقه
نویسنده: Kevin Dockx


Pluralsight OAuth2 and OpenID Connect Strategies for Angular and ASP.NET

Kevin Dockx
4h 9m

When you're building an Angular or ASP.NET MVC-based application, sooner or later you'll want to secure it - preferably sooner rather than later. In this course, you'll learn how OAuth2 and OpenID Connect, today's widely-used standards, can help you with that.
A typical application these days consists of (at least) a client application and an API. In this practical, demo-driven course, you'll learn how to work with authorization and authentication using today's widely-used standards: OAuth2 and OpenID Connect. The focus of this course is security, both for Angular and ASP.NET MVC-based applications, but it aims to go beyond that. Amongst other things, we'll look into finding a safe way to get identity-related information in your application over impersonation when accessing an API, right up to dealing with credentials and two-factor authentication.

7m 32s
What Will You Learn in This Course?
2m 17s
Course Prerequisites
1m 32s
Introducing Trip Gallery
2m 59s
0m 43s
Understanding OAuth 2.0 Basics
27m 42s
A Typical, Modern Application
3m 0s
Defining OAuth 2.0
2m 51s
OAuth 2.0 Flows
1m 9s
The Main Actors
1m 42s
OAuth 2.0 Client Types
1m 38s
OAuth 2.0 Endpoints
1m 18s
IdentityServer v3
1m 16s
Demo - Setting up Identity Server
9m 25s
Demo - Requiring Authorization for API Access
3m 52s
1m 26s
Authorizing Access to the API
39m 42s
Client Credentials Flow
1m 46s
Demo - Client Credentials Flow
6m 8s
Can We Use This in an Angular Application?
1m 6s
Implicit Flow
2m 17s
Demo - Implicit Flow
6m 8s
Demo - Automatically Adding an Authorization Header in AngularJS
2m 7s
Authorization Code Flow
1m 58s
Demo - Authorization Code Flow
6m 2s
Resource Owner Password Credentials Flow
2m 10s
Demo - Resource Owner Password Credentials Flow - Part 1
4m 26s
Angular and Cross-origin Resource Sharing
1m 17s
Demo - Resource Owner Password Credentials Flow - Part 2
1m 42s
2m 29s
Understanding Identity: OpenID Connect
7m 3s
Introducing OpenID Connect
1m 55s
Identity Token and UserInfo Endpoing
1m 57s
OpenID Connect Flows
1m 3s
Scopes and Claims
1m 18s
0m 47s
Working with OpenID Connect on the Client
40m 2s
The Right Flow for the Right Client
1m 56s
Helper Components
1m 8s
Demo - OpenID Connect Hybrid Flow
6m 28s
Demo - Logging Out (MVC)
2m 39s
Demo - Transforming Claims (MVC)
4m 11s
Demo - Authorizing Access (MVC)
2m 8s
Demo - OpenID Connect Implicit Flow
5m 18s
Demo - Logging Out (Angular)
3m 10s
Demo - Authorizing Access (Angular)
2m 35s
Demo - The UserInfo Endpoint (Angular)
5m 18s
Demo - The UserInfo Endpoint (MVC)
3m 53s
1m 11s
Impersonating the User When Accessing the API
17m 27s
Impersonating the User
1m 32s
Demo - Ensuring the Access Token Contains the Scope We Need
3m 46s
Demo - Extending a Selection at API Level Based on the User
2m 46s
Demo - Blocking Functionality at API Level Based on the User
2m 19s
Role-based Authorization
0m 58s
Demo - Role-based Authorization
2m 31s
Demo - Reusing Claims Across Scopes
2m 30s
1m 3s
Advanced Topics
44m 43s
Token Expiration
2m 57s
Demo - Controlling Token Expiration
5m 40s
Refresh Tokens
1m 0s
Demo - Handling Expired Tokens with Refresh Tokens (MVC)
6m 37s
Demo - Handling Expired Tokens with Redirection (Angular)
2m 41s
Redirection vs. Refresh Tokens
1m 7s
Single Sign-on
2m 9s
Demo - Single Sign-on between MVC and Angular
1m 44s
Demo - Redirecting to a Specific URI After Logging Out
4m 13s
Single Sign-out
3m 45s
Demo - Single Sign-out between MVC and Angular
6m 47s
Avoiding Visible Redirection in Angular with a Hidden Iframe
1m 7s
Demo - Avoiding Visible Redirection in Angular with a Hidden Iframe
2m 27s
2m 23s
Dealing with Credentials
1h 5m
Dealing with Credentials
1m 38s
Demo - A Custom User Store
7m 45s
Demo - Creating an Account by Providing a Registration Page
5m 12s
Demo - Integrating with Third-party Providers
8m 58s
Demo - Multiple Logins, One Account
7m 4s
Demo - Creating an Account from an External Identity Provider
4m 20s
WS-Federation and Windows Authentication
2m 12s
Demo - WS-Federation and Windows Authentication
9m 17s
Demo - Customizing the Login Flow Through Partial Login
6m 5s
Two-factor Authentication
1m 56s
Demo - Two-factor Authentication
6m 43s
Additional Packages and Resources
1m 2s
Course Summary
2m 52s