Securing Your Apps with OAuth2 and OpenID Connect

Speaker: Roland Guijt In the past you could get by with designing a login screen with a username and login textbox in your app and directly check the credentials in a database. But we're living in the age of (Web) APIs. With modern apps, such as SPAs, just authenticating with the website isn't enough; you also want to connect on behalf of the logged in user in a Web API that's providing data. OpenID Connect is used for authentication in this scenario and OAuth2 for authorization. The duo is the complete solution to this problem. We'll look at a collection of .NET apps that demonstrate the usage of both OAuth2 and OpenID Connect.