We can't find the internet
Attempting to reconnect
Something went wrong!
Hang in there while we get back on track
Developing Flexible Authorisation Capabilities in ASP.NET Core - Jason Taylor - NDC London 2023
Develop flexible authorization capabilities in ASP.NET Core with Jason Taylor's talk at NDC London 2023, exploring roles, policies, and claims-based authorization for scalable and maintainable access control.
- Authorization and access control are critical components of any web application, and ASP.NET Core provides flexible authorization capabilities.
- The basic approach involves specifying required permissions, roles, and policies, but it can become complex and difficult to maintain.
- The flexible approach uses regular authorization policies and provides a more scalable and maintainable solution.
- To develop flexible authorization capabilities, you can use a combination of roles, policies, and claims-based authorization.
- Role-based authorization allows you to restrict access to specific pages and resources based on the user’s role.
- Claims-based authorization provides more fine-grained control over access to specific resources.
- Using a custom policy provider, you can generate policies dynamically based on the user’s roles and permissions.
- The flexible approach also provides an easy way to assign permissions to roles and users, making it easier to manage access control.
- The application can be configured to use different levels of authorization, such as role-based or claims-based authorization.
- The flexible approach also provides better support fornested roles and allows for more granular control over access to resources.
- The authorization system can be extended to include additional features, such as auditing and logging, to help track and monitor access to resources.
- The use of a custom policy provider allows for more flexibility and customization of the authorization system.