Keeping secrets out of version control in .NET applications

Posted on: 26-05-2019

Goes through methods of storing secrets in a way where they cannot end up in the shared code repository

Best practices for N-tenant Azure AD applications

Posted on: 21-05-2019

Some things to watch out for in your multi-tenant Azure AD applications that support a limited number of tenants

Resource Owner Password Credentials grant flow in Azure AD

Posted on: 05-05-2019

What is the OAuth ROPC flow, why it exists, and why you should not use it for most cases

Avoiding wildcard reply URLs with MSAL.js

Posted on: 02-05-2019

Some points on why using wildcards (asterisks) in Azure AD app reply URLs may be a bad idea, and how to do it better

Using groups vs using application roles for authorization in Azure AD apps

Posted on: 21-04-2019

Compares two approaches to high-level authorization in an application: groups and app roles

Using Azure Key Vault and Azure Storage to store Data Protection keys with ASP.NET Core

Posted on: 07-04-2019

A look at how ASP.NET Core's Data Protection can be setup in a good way using Azure services

Exploring the new .NET Cosmos DB SDK (v3)

Posted on: 25-01-2019

Since the new Azure Cosmos DB SDK for .NET is available, I thought I'd look into it and see what's changed.

Implementing Azure AD Single Sign-Out in ASP.NET Core

Posted on: 23-11-2018

Single Sign-Out enables you to clear the user's session immediately when they sign out from another app

Accessing Azure Service Bus with Managed Identities

Posted on: 03-11-2018

Sending and receiving Azure Service Bus Queue messages with zero credentials utilizing Azure Managed Identities

Azure AD Authentication in ASP.NET Core APIs part 2: Custom permissions, multi-tenant APIs

Posted on: 02-08-2018

In the second part we add custom delegated and application permissions to an ASP.NET Core API and also talk about multi-tenancy.

Hi! My name is Joonas Westlin, I'm a software developer who blogs about ASP.NET Core, Azure, and Web development.

Azure MVP, Azure Solutions Architect Expert, Azure Security Engineer Associate, Azure Developer Associate.