Azure AD, Scope-based authorization

“Hello World!” Continuing the customization of the basic two tiers scenario introduced in my previous posts, I would like to talk about scopes. OAuth2 defines the concept of scope as a “list of space-delimited, case-sensitive strings” that specifies the scope of the access request. These scopes can be used by a target application to allow…

2

Azure AD and Group-based authorization

“Hello World!” In my previous post I talked about how to use Azure AD to secure an Asp.Net Core web API project. If we want to go further than just protect our web API, we can use groups to further customize the access. A typical example is to restrict the access only for users belonging…

0

Access an Azure AD secured Api with Asp.Net Core 2.0

Basic AzureAD scenario
Basic AzureAD scenario

tl;dr Register a new Web App in AAD for the Api Register a new Web App in AAD for the FronEnd Add the permissions to access the Api app Configure the Web apps code with the authentication details as usual (ClientID, Client Secret, Audience Uri..etc..). In Azure portal edit the FrontEnd manifest enabling the implicit…

0

Create a Service Fabric Application on demand

“Hello World”! You probably already know that the Service Fabric SDK allows a developer to fully manage the cluster, the nodes, and the deployed applications by code. One of the features I like most of the Service Fabric programming is the ability to dynamically create and deploy new services. Or more in general the ability…

0

Service Fabric Reverse Proxy Port discovery

Hello World! The reverse proxy is a feature of Service Fabric that allows to expose internal endpoints, taking care of naming resolution, discovery and maintenance. Basically each service can be reached using an URI like: http://cluster-fqdn:PORT/[ApplicationName]/[ServiceName] In this Uri PORT is the Reverse Proxy port, ApplicationName is the name of the deployed application (root of…

2

Experimenting with Azure Managed Applications

“Hello World”! Today I’m playing with the new service “Azure Managed Applications” (Service Catalog) and would like to write down some key points I learned, and can be hopefully useful for new comers: when you create a managed application this is nothing else than a standard ARM template, you need to create also other two…

0

Azure AD Delegation scenario

tl;dr Register a new Web App in AAD for the Api Add the required “delegated” permissions to the external resource (i.e: Microsoft Graph) Register a new Web App in AAD for the FrontEnd Add the permissions to access the Api app Configure the Web apps code with the authentication details as usual (ClientID, Client Secret,…

0

WCF ETW Tracing

“Hello World”! Today I would like to share a quick way to enable and collect WCF tracing, machine wide, without any configuration change! We are all used to enable WCF diagnostic tracing using the application/web configuration file (leveraging our friend System.Diagnostics.XmlWriterTraceListener). But WCF uses also ETW for tracing, so we have a second option! The…

0

WIF 4.5 Active/Passive/Delegation examples

“Hello World”! Lately more and more customers are asking me help and examples on how to use WIF 4.5+WCF in their projects, just a quick jump-start or how to “migrate” from the previous version (WIF on .NET 3.5). As you may know WIF is now part of the framework so the first thing to note…

0

Windows 10 App insights with Cortana

“Hello World”! My need was to quickly visualize a report of one of my published apps in the Windows Store. I just wanted a quick way to see the rating, the number of reviews and the active users. These information were all already available but scattered over many websites: mobile engagement, hockey app and windows…

0