damienbod/Hostedblazor8MeID

Hosted Blazor .NET 8 application using Microsoft Entra ID

Blazor .NET 8 apps using Microsoft Entra ID

Blazor WASM hosted in ASP.NET Core

• A first look at Blazor and .NET 8 secured with Microsoft Entra ID
• Blazor and CSP

Blazor Web

• Secure an ASP.NET Core Blazor Web app using Microsoft Entra ID

History

• 2024-02-27 Fix insecure API in Blazor Web (CSRF on API still broken)
• 2024-02-13 small clean up
• 2024-02-07 Use default cookie settings, clean up namespaces, updated packages
• 2024-02-03 Added Blazor Web OIDC, fixed refresh bug in Hosted WASM
• 2024-01-14 Updated .NET 8, fixed security headers, use CSP nonce
• 2023-05-18 Updated .NET 8 preview 4

Links

https://learn.microsoft.com/en-us/dotnet/core/whats-new/dotnet-8

https://github.com/damienbod/Blazor.BFF.AzureAD.Template

https://dotnet.microsoft.com/en-us/download/visual-studio-sdks

https://aspnet.github.io/quickgridsamples/sample

https://developercommunity.visualstudio.com/t/browserlink-CSP-support-NET-7/10061464

dotnet/AspNetCore.Docs#29294

https://github.com/CrahunGit/Auth0BlazorWebAppSample/tree/master/BlazorApp4

https://github.com/dotnet/blazor-samples/tree/main/8.0/BlazorWebAppOidc

https://auth0.com/blog/auth0-authentication-blazor-web-apps/

https://github.com/AzureAD/microsoft-identity-web

https://github.com/andrewlock/NetEscapades.AspNetCore.SecurityHeaders

https://github.com/javiercn/BlazorWebNonceService