Multiple JWTs in .NET: How to Implement Multi-Token Authentication

Рет қаралды 7,555

Күн бұрын

Пікірлер: 39

@MilanJovanovicTech Ай бұрын

Want to master Clean Architecture? Go here: bit.ly/3PupkOJ Want to unlock Modular Monoliths? Go here: bit.ly/3SXlzSt Join a community of 1000+ .NET developers: www.patreon.com/milanjovanovic

@dotnetMasterCSharp Ай бұрын

This is absolutely useful , thank you Milan!

@MilanJovanovicTech Ай бұрын

@@dotnetMasterCSharp Glad you enjoyed it. This has been asked many times in the channel, so figured I'd cover it.

@thiagomatu Ай бұрын

Nice, I work on an application that supports multiple authentication providers, but this your code is so much clean and easier to understand, thanks for sharing this Milan!

@MilanJovanovicTech Ай бұрын

Glad it helped!

@ruekkart Ай бұрын

Awesome! I was thinking about this for a multitenant app where each tenant can define its own auth provider, and this seems pretty helpful for that.

@MilanJovanovicTech Ай бұрын

That's a great idea!

@AbdulHaseeb-vc5yv Ай бұрын

Exactly what I needed. Thanks!

@MilanJovanovicTech Ай бұрын

Awesome

@johncerpa3782 Ай бұрын

Great video!

@MilanJovanovicTech Ай бұрын

Thanks!

@kabal911 Ай бұрын

Nice. I coincidentally did a pretty similar thing yesterday, where I wanted to support Cookie auth OR JWT auth. Took a bit of time to figure out the existence of AuthorizationBuiler and the DefaultPolicy

@MilanJovanovicTech Ай бұрын

Nice work!

@timur2887 Ай бұрын

Thank you!

@MilanJovanovicTech Ай бұрын

You're welcome!

@cesarmauricioguerrerobatre591 Ай бұрын

Amazing, it was a masterful explanation, what happens when I have several clients coming from keycloak and I need a certain client to access a certain number of enpoints, how do I do this?

@MilanJovanovicTech Ай бұрын

Check out Keycloak authorization

@yaelsleman660 Ай бұрын

Mr please.. I need to know what is you opinion about ABP framework and it is important to learn it?

@MilanJovanovicTech Ай бұрын

Can't say

@nenzax2701 Ай бұрын

Great Video, quick question, how do we tie a particular controller method to a specific jwttoken, ex: api/getusers should use keycloak, api/getadmins should use supabse

@MilanJovanovicTech Ай бұрын

Authorize[AuthenticationSchemes: "custom_scheme_name"] I may have missed the exact syntax, but you can specify the scheme you want to use for a given controller/endpoint

@vichustephen4475 26 күн бұрын

@@MilanJovanovicTech But if I put both schemes , the middleware will make public cert verification requests to both endpoints . Need to use AddPolicyScheme with forward selector

@michxkowal4282 Ай бұрын

Hi, do you know how to change the secret key while the API is running? I would like to be able to externally change secret in certain situations.

@MilanJovanovicTech Ай бұрын

Update the ENV var

@thomasvlima Ай бұрын

And a multitenant API where each tenant has its own user pool?

@MilanJovanovicTech Ай бұрын

But same auth provider?

@thomasvlima Ай бұрын

@MilanJovanovicTech yes. For example, using cognito, each tenant has its own user pool. And each user pool can have its own AD integration

@eduardoyupanqui Ай бұрын

Wow, its no necessary add policyscheme to select the scheme to validate?

@MilanJovanovicTech Ай бұрын

But you can if you want to

@binoypatel09 Ай бұрын

Is Microsoft Entra ID work same way?

@MilanJovanovicTech Ай бұрын

In what way do you mean?

@binoypatel09 Ай бұрын

Let say I have a server app with the multiple different client apps, some apps use built-in authentication in the server app and some uses Microsoft Entra ID withe the same server app, so how am I going to accomplish this?