Get the source code for this video for FREE → the-dotnet-weekly.ck.page/gateway-auth Want to master Clean Architecture? Go here: bit.ly/3PupkOJ Want to unlock Modular Monoliths? Go here: bit.ly/3SXlzSt

Milon, I thank you very much because you provide the source code for free. I have never seen anyone do that. You are a dedicated person who loves others, and this reflects the love of others for you. Thank you, Milon, for all this hard work.

Nice one, haven't actually had the change to look at YARP much due to NGINX and AGIC, with our apps being monolithic in nature. Have you considered doing a video on Keycloak from .NET dev point of view. For work I'm stuck with Entra Id, but been using keycloak on my own cluster. Great piece of software imo. Might not be in high demand due to everyone being stuck with Okta, Entra Id or similar, but then again I still, from time to time, see identity server 4 mentioned, so might be the lack of content about it? Then again I know atleast some government agencies are using Keycloak so there is usage but not much content.

This is awesome and useful content for devs!

Great video, i'm a fan now

This is awesome

Thanks Milan for the video.

Hi Milan, Thanks for this video...please can you use KeyCloak for the YARP API Gateway Authentication

Nice tutorial. Milan, what other API gateways did you use except YARP ?

Could you please make a video on implementing resiliency on yarp gateway? Thanks :)

Hi Milan, which of your paid courses can you recommend which cover DDD and clean architecture, authentication and authorisation end to end, I feel like it will help me gain confidence as a dotnet developer 😊

Hi Milan, I have been researching for a few days on developing a route-based retry and circuit breaker for my .NET application using Yarp.ReverseProxy. How can we do this using the Polly library? I couldn't find a source on this subject, can you make a KZbin video? Thanks

Does the internal apis have some kind of authentication? Or does they trust the api gateway? Maybe it is more interesting to secure the internal apis because gateway is exposed to users and is more security risk imo. What do you think?

Thank you for the video. Is it possible to have .NET generate an accessToken which is JWT that could be refreshed by the refreshToken that is already shared in the login endpoint?

How should we approach implementing zero trust in an API gateway architecture? While an API gateway can centralize access control and minimize the attack surface, is it advisable to forward the complete JWT to downstream services for validation against the authority again?

Thanks for the video. Can YARP replace Azure APIM? What is the difference between them?

Can you make one tutorial on full microservices and api gateway

I am using asynchronous communication in microservices but i need user information in request or response form , how i can do it because it is synchronization communication

How to pass the token to the inner APIs?

Yeah

Is it also posible the change the authentication type towards the backend api. Eg api Gateway incoming jwt auth but backend uses client certificate

@Milan Jovanović Bro the source code link is not working please give a valid link it's my kind request.

Consul ,kubernates ? Is there a plan😋

good :)

Can we use cloud api gateway instead?

I'm the first viewer :D