Azure AD, Scope-based authorization

“Hello World!” Continuing the customization of the basic two tiers scenario introduced in my previous posts, I would like to talk about scopes. OAuth2 defines the concept of scope as a “list of space-delimited, case-sensitive strings” that specifies the scope of the access request. These scopes can be used by a target application to allow…

2

Azure AD and Group-based authorization

“Hello World!” In my previous post I talked about how to use Azure AD to secure an Asp.Net Core web API project. If we want to go further than just protect our web API, we can use groups to further customize the access. A typical example is to restrict the access only for users belonging…

0

Access an Azure AD secured Api with Asp.Net Core 2.0

Basic AzureAD scenario
Basic AzureAD scenario

tl;dr Register a new Web App in AAD for the Api Register a new Web App in AAD for the FronEnd Add the permissions to access the Api app Configure the Web apps code with the authentication details as usual (ClientID, Client Secret, Audience Uri..etc..). In Azure portal edit the FrontEnd manifest enabling the implicit…

0

Service Fabric Reverse Proxy Port discovery

Hello World! The reverse proxy is a feature of Service Fabric that allows to expose internal endpoints, taking care of naming resolution, discovery and maintenance. Basically each service can be reached using an URI like: http://cluster-fqdn:PORT/[ApplicationName]/[ServiceName] In this Uri PORT is the Reverse Proxy port, ApplicationName is the name of the deployed application (root of…

2

Experimenting with Azure Managed Applications

“Hello World”! Today I’m playing with the new service “Azure Managed Applications” (Service Catalog) and would like to write down some key points I learned, and can be hopefully useful for new comers: when you create a managed application this is nothing else than a standard ARM template, you need to create also other two…

0

Azure AD Delegation scenario

tl;dr Register a new Web App in AAD for the Api Add the required “delegated” permissions to the external resource (i.e: Microsoft Graph) Register a new Web App in AAD for the FrontEnd Add the permissions to access the Api app Configure the Web apps code with the authentication details as usual (ClientID, Client Secret,…

0

How to programmatically get App reviews from Windows Store

“Hello World”! We just announced the availability of the Windows Store analytics API. With these APIs you can get many useful information directly from the Windows Store, without the need to pick up a browser and login in the Dev Center. More important, you can now programmatically access to these information! Let’s see, for example,…

0

Azure, Usage of CDN API to Load and Purge content

c”Hello World”! Azure CDN is a great and powerful feature that is straightforward to setup and configure, but the management of the CDN content can be performed only via the Azure Portal or directly invoking the CDN APIs. There are no CDN PowerShell cmdlets at the moment. The API to load or purge specific content…

6