▶ [Part 1/4] .NET 6 Web API 🔒 Create JSON Web Tokens (JWT) - User Registration / Login / Authentication: ua-cam.com/video/v7q3pEK1EA0/v-deo.html ▶ [Part 2/4] .NET 6 Web API 🔒 Role-Based Authorization with JSON Web Tokens (JWT): ua-cam.com/video/TDY_DtTEkes/v-deo.html ▶ [Part 3/4] .NET 6 Web API 🔒 Read JWT Authorization Claims of a User (from a JSON Web Token): ua-cam.com/video/fhWIkbF18lM/v-deo.html ▶ [Part 4/4] Refresh Tokens with a .NET 6 Web API 🚀: ua-cam.com/video/HGIdAn2h8BA/v-deo.html
Great Tutorial Patrick, could you please do a tutorial were you combine all this with the Code First Approach tutorial, Registration Login to then accessing methods to create our characters based on the Roles that user has
I really enjoy your short concise videos, a suggestion..... If I should stumble across your video in UA-cam I would like to have a link to part 1 and part 2... maybe?
Great job, Patrick! One more excellent video of yours! If I may, I'd like to suggest you to create a YT tutorial about authorization policy factories, explaining when and how to implement. Keep up the good work and congrats :)
Hii Patrick, im follow this couse full section from skillshare "Authentication course". I have one question, if there already custon table for user registration iclude roles and generate token, how to read in client side with httpclient to retrive that token has include roles for authorization. Can you suggest to me how to do it Im done with consume web api from client for login and get that token, but not success for authorization Or anybody can help me, thanks before.
Loved the video. I like swagger but while developing and testing it slows you down. Instead of calling swagger have you worked with tools like postman, insomnia or the vs code plugin rest-client. They speed up calling api endpoints and even allow you to chain multiple calls and re-use thair responses. It could really simplify some of the demo calls you make.
Hey Johan, Thanks for your feedback. That's funny, actually. I used Postman a lot. But with the release of .NET 5, people wanted to see more of Swagger, because it was kinda built into the .NET 5 example projects. However, you're right, Postman or the other tools are definitely worth it. Personally, I really like all the options in terms of profiles, configs, bookmarks, and so on, Postman provides. Maybe I should make a little video comparing Swagger and Postman. Now that I'm writing this, I think Swagger is great because you get an API documentation out-of-the box, but Postman is sometimes better in regards to testing your calls because you can save them, configure them, and so on. Hope this makes sense. Thanks again! Take care, Patrick
@@PatrickGod A comparison is always a good idea for a video. I like the vscode extension rest client because it is very easy to include the document in source-control. Both Postman, and my preferred too Insomnia have the ability to save projects/workspaces, but the files are stored in their location, not where my solution source lives. The things you mentioned, "profiles, configs, bookmakrs..." are all possible with rest client, you might want to check it out also.
I recently used VS Code with the ThunderClient Extension installed. It is more lightweight, and you can create collections, and test a Web API. It works very well. Postman can be memory-intensive if you have other apps open on your machine.
This has been a great tutorial, incredibly clear! Would you still reccommend doing this custom rolling of auth vs using something like ASP Identity Core? This seems very straight forward and keep thinking I am missing something!
Hi? Thank you a lot for this video. I need one lecture. Making a db table through blazor dynamically. I tired with onmodelcreating method, but it seems not working. I would like to create each year's table for class members through blazor admin page, then members do CRUD things. May I ask?
if i make a controller for role "user" and there's get user personal data, is there a way for user role to avoid getting someone else data, even tho they have the same role ?
Hi there. I'd suggest looking for the user with the given ID. Since we get the role from the JWT, for instance we could also put the User ID in the JWT and read it again in the controller. Hope this helps!
This is an amazing idea! A big project, though, but still an amazing idea. Let me think about that, and maybe add a poll in the community tab, because I've got a couple of similar ideas. 😊 Hope you're going to vote. Take care, Patrick
▶ [Part 1/4] .NET 6 Web API 🔒 Create JSON Web Tokens (JWT) - User Registration / Login / Authentication: ua-cam.com/video/v7q3pEK1EA0/v-deo.html
▶ [Part 2/4] .NET 6 Web API 🔒 Role-Based Authorization with JSON Web Tokens (JWT): ua-cam.com/video/TDY_DtTEkes/v-deo.html
▶ [Part 3/4] .NET 6 Web API 🔒 Read JWT Authorization Claims of a User (from a JSON Web Token): ua-cam.com/video/fhWIkbF18lM/v-deo.html
▶ [Part 4/4] Refresh Tokens with a .NET 6 Web API 🚀: ua-cam.com/video/HGIdAn2h8BA/v-deo.html
Great Tutorial Patrick, could you please do a tutorial were you combine all this with the Code First Approach tutorial, Registration Login to then accessing methods to create our characters based on the Roles that user has
I really enjoy your short concise videos, a suggestion..... If I should stumble across your video in UA-cam I would like to have a link to part 1 and part 2... maybe?
This is actually a really good idea. 😅 I should definitely add the other parts to my videos. Thank you!
Liked it before watch. well explained. thank you
Thank you so much! 😊
Your videos helps alot. Thanks.
Glad to hear that! Thanks! 😊
wonderful tutorial
Thank you! 😊
Thanks bro, great tutorial!
Amazing videos! could you make a video about how to implement an "account locked for y mins after x amount of failed login tries" with jwt :)
Great idea! Let me add that to my roadmap. Thanks!
for the nullable properties, just edit your csproject file and Remove the enable tag
Thanks for the info!
disable
Great job, Patrick! One more excellent video of yours! If I may, I'd like to suggest you to create a YT tutorial about authorization policy factories, explaining when and how to implement. Keep up the good work and congrats :)
Thank you so much! Added your suggestion to my list. ☺️
Great Tuorial, thank you!
Vielen Dank für ein weiteres tolles Video :-)
Danke dir! 😊
Fantastic explanation!
Hii Patrick, im follow this couse full section from skillshare "Authentication course". I have one question, if there already custon table for user registration iclude roles and generate token, how to read in client side with httpclient to retrive that token has include roles for authorization.
Can you suggest to me how to do it
Im done with consume web api from client for login and get that token, but not success for authorization
Or anybody can help me, thanks before.
Hi, is it posible to use authoritzation based on claims without identity?
Loved the video.
I like swagger but while developing and testing it slows you down. Instead of calling swagger have you worked with tools like postman, insomnia or the vs code plugin rest-client. They speed up calling api endpoints and even allow you to chain multiple calls and re-use thair responses. It could really simplify some of the demo calls you make.
Hey Johan, Thanks for your feedback. That's funny, actually. I used Postman a lot. But with the release of .NET 5, people wanted to see more of Swagger, because it was kinda built into the .NET 5 example projects. However, you're right, Postman or the other tools are definitely worth it. Personally, I really like all the options in terms of profiles, configs, bookmarks, and so on, Postman provides. Maybe I should make a little video comparing Swagger and Postman.
Now that I'm writing this, I think Swagger is great because you get an API documentation out-of-the box, but Postman is sometimes better in regards to testing your calls because you can save them, configure them, and so on.
Hope this makes sense. Thanks again!
Take care,
Patrick
@@PatrickGod A comparison is always a good idea for a video. I like the vscode extension rest client because it is very easy to include the document in source-control. Both Postman, and my preferred too Insomnia have the ability to save projects/workspaces, but the files are stored in their location, not where my solution source lives. The things you mentioned, "profiles, configs, bookmakrs..." are all possible with rest client, you might want to check it out also.
I recently used VS Code with the ThunderClient Extension installed. It is more lightweight, and you can create collections, and test a Web API. It works very well. Postman can be memory-intensive if you have other apps open on your machine.
@@PatrickGod I see that you haven't created a list with this on your channel. Im struggling to follow the order of the videos.
Great and usefull !
This has been a great tutorial, incredibly clear!
Would you still reccommend doing this custom rolling of auth vs using something like ASP Identity Core? This seems very straight forward and keep thinking I am missing something!
thanks you so much
Initially take a thanks
Hi? Thank you a lot for this video. I need one lecture. Making a db table through blazor dynamically. I tired with onmodelcreating method, but it seems not working. I would like to create each year's table for class members through blazor admin page, then members do CRUD things. May I ask?
wow Thank you
Glad it helps! 🙂
if i make a controller for role "user" and there's get user personal data,
is there a way for user role to avoid getting someone else data, even tho they have the same role ?
Hi there. I'd suggest looking for the user with the given ID. Since we get the role from the JWT, for instance we could also put the User ID in the JWT and read it again in the controller. Hope this helps!
@@PatrickGod best practice would be to do it through a service ?
Patrick can you please make a project management system(like trello or jira but simple) using blazor. Much Appreciated !!!
This is an amazing idea! A big project, though, but still an amazing idea. Let me think about that, and maybe add a poll in the community tab, because I've got a couple of similar ideas. 😊 Hope you're going to vote. Take care, Patrick
Hi sir nice tutorial thank you please make a video on asp .net core web API and react j s with graphql please 🙏
Thanks Xavier. I added it to my list. ;)
Muchas gracias ;-)
Glad I could help. 😁
great job patrick ,could you please connect this project with database like sql server , we can take data from db and insert username pasword in db
Can you guide how to implement RefreshToken in .net Core 6.0 API?
I Refer this video and Previous Video For Authentication and Authorization
Hey! How about a tutorial authorization with jtw and roles ?:D
This one is for you: ua-cam.com/video/TDY_DtTEkes/v-deo.html 😉
I used this code and got 2 issue, first it is unable to fit the key byte size another JWTtoken is invalid.
i want confirm email and forget password with jwt token
Good idea, thanks for the feedback!
what is the meaning of your name.
.net 6.0 gives these null warnings
the jwt decoded in httpcontext.user has already been validated? the expiration date?