That comment made my day

This comment made my day, thank you so much. Happy that it was helpful for you!

Hey Andres, so happy that you liked the course, I hope it was beneficial for you

Thank you so much for that amazing feedback!! the best is yet to come

Heey, Thank you so much for such a kind and encouraging comment, that really made my day, sorry for late reply and thank you so much again, regarding you question I will make sure to have a video about how to develop a full API very soon which will cover all the mentioned things Thanks again

You are totally right, so happy that you liked it

Thanks man Haha that's nice I will think of it ;-P

@@ahmad.mozaffar No worried bro. Do you have any tutorial on claims, roles and policies relating to this course?

Diamond Chirisa Unfortunately but I don’t have yet

Thanks for your nice comment

Mihai Moisei Glad to help

Super super happy to hear that!!!

Here just because we are using ASP MVC App we need to embed some C# code in it and this is why we have used razor but you can use HTML with some JS to fetch the token from the URL and put in the form

That's so nice of you Thanks for your feedback Of course I'm here to help, just let me know the issue!

@@ahmad.mozaffar I published the project as self-contained folder through VS, and put the folder inside the iis folder i.e. inetpub/wwwroot/identity, change the application pool into .NET CLR with not managed code, however, when i tried to access the api endpoint, its returned 505, am i doing something wrong ? thanks in advance :D

Great, could you just please push a screenshot of the error so I can have more details You can share the picture on Twitter @AhmadMozaffar99 Thanks

@@ahmad.mozaffar You are nice, I had twitted the screenshots, thanks :D

Thanks, I have checked it

Thanks for nice feedback, yeah actually you can do that easier using Identity services like Azure Active Directory B2C, as it's easier to complete

Hi dear You should use AddScoped instead of AddIdentity

ahmed ibrahiem Yes That’s the last one If you are interested in more complex authentication scenarios I highly recommend this kzbin.info/www/bejne/al6VqISNhLmZbMU

Surely you can very easily services.Configure(options => options.TokenLifespan = TimeSpan.FromHours(3));

@@ahmad.mozaffar Thanks

Sourav Bhattacharjee Pleasure

Hi, thanks for reaching out, could you explain a little bit more please

Hi @@ahmad.mozaffar I mean, I'm trying to figure out how to show the result of the password change in a good looking way instead of the plain json string result from te API so I want to create an alert, like a window, to show that result

Hi dear Thanks for your interest 405 means you are send the wrong format from the client or Method not allowed Make sure in the controller to decorate your parameter with [FromBody] And to send a post request correctly from your mobile app

@@ahmad.mozaffar thanks for your answer. The call to ResetPassword is made from a browser using a post method. And yes the parameter is decorated with [FromBody].

@@nizamarif5825 could you please share with me the code from the client side via my Twitter account @AhmadMozaffar99

​@@ahmad.mozaffar I managed to find the error. Didn' add the slash characters to the action method value which meant I got a relative url. Thanks for your time.

@@nizamarif5825 Happy for that Thanks

Hi, yes the concepts are the same just little adjustments and version of the libraries

Hi dear thanks for reaching out you can add a new property or the best way to do this I have not mentioned that in the videos but I will make a new video very soon about that which is add it to the claims of the access tokens when you set the email and other properties Then in the client you should decode the access token so you get a list of claims you put like email, name, phone ..... This link will help you in the decoding process after you receive the token from the server do this in the client developer.okta.com/blog/2019/06/26/decode-jwt-in-csharp-for-authorization

@@ahmad.mozaffar Alright thanks a lot! Looking forward to these new videos :)

Fernando Schilipack Ramos You are must welcome mate

Yeah correct Will be taken into condensation thanks a lot for your feedback and your interest

Thanks!!

Thank you so much for reaching out Adding such a Login provider probably you should go with it manually from scratch you write the code that validate the access token against Facebook for example, so the best way to add them and make them goes in reality if you have to implement this the best way to is go with Azure Active Directory B2C it's already implemented and to know more about this you can check the videos from 07 until 12 here kzbin.info/www/bejne/novXdIacbMqLZ8k And to implement the external auth providers just check this blog docs.microsoft.com/en-us/azure/active-directory-b2c/tutorial-add-identity-providers

mahmoud taha The role is existing and it’s applied for the logged in User

@@ahmad.mozaffar i mean when i try to add role like "Admin" to existing user and then i use [Authorize(Roles="Admin")] on specific resource i get "403 forbidden"

Somehow yes But at the end you can redirects the user to page different than the app I mean the reset password could happen in a separated website, and let the client-side UWP in this case just opens that webpage to reset the password

Thanks for your support

Thanks for reaching out This is possible but a little bit hard Usually logout just removes the access token from the client, also the expiry date for the token should be too short for example 5 mins and make a refresh token endpoint You can find more about this here stackoverflow.com/questions/45748732/could-we-destroy-invalidate-jwt-token-in-asp-net-core

@@ahmad.mozaffar I understand, thanks

Sourav Bhattacharjee Happy for that

Hi dear It's already there in the ASP.NET Identity when you install it

public static async Task ForgetPassword(string email) { var forgetpassword = new ForgetPassword() { Email = email, }; var httpClient = new HttpClient(); var json = JsonConvert.SerializeObject(forgetpassword); var content = new StringContent(json, Encoding.UTF8, "application/json"); var resposta = await httpClient.PostAsync(AppSettings.ApiUrl + "api/conta/forgetpassword?email=", content); if (!resposta.IsSuccessStatusCode) return false; else return true; } I tried this, but i don't think that's the right thing

I created a page to receive this user email so when he input the data it will send to my API, just dunno how to do it xD

Welcome back again, Thank you so much for your interest Regarding your issue what is the error you get exactly ?

@@ahmad.mozaffar Hey there! I did manage to work, It wasn't working because the property wasn't referring to anything i used the Email property of LoginModel class instead of creating a specific class just to "ForgetPassword" method & also i made some minor changes staying like this: public static async Task ForgetPassword(string email) { var forgetpassword = new LoginModel() { Email = email, }; var httpClient = new HttpClient(); var json = JsonConvert.SerializeObject(forgetpassword); var content = new StringContent(json, Encoding.UTF8, "application/json"); var resposta = await httpClient.PostAsync(AppSettings.ApiUrl + $"api/conta/forgetpassword?email={email}", content); if (!resposta.IsSuccessStatusCode) return false; else return true; }

@@fernandoschilipackramos5541 That a very good news, good luck dear

Sandeep Bhor Thank you

Thanks for your feedback, could you please explain a bit more?

Thanks for mentioning that

You are welcome