DeaDo
ASP.NET & EntraId: Acquire Token on Behalf of User for Azure Resource Manager
I have 2 Applications
- A SPA thats authenticated with MSAL.
- A ASP.NET web-api thats secured with Entra Id.
I created 2 App-registrations in EntraId and im able to authenticate the User, obtain a Token for Web-API & call the backend.
The Backend is using the AzureResourceManager with the ArmClient SDK & DefaultAzureCredentials (with shared secret in environment variables).
The ArmClient can access resources if the application registration has permission.
Now I want to use the Users Permission from the SPA & OBO Flow to request resources he has access to.
However. After struggling with the documentation for 2 days I cant figure out how to do that.
https://github.com/Azure-Samples/active-directory-dotnet-native-aspnetcore-v2/tree/master/2.%20Web%20API%20now%20calls%20Microsoft%20Graph
this seems closest to what i want to achieve (with ArmClient though, not with GraphAPI)
But i have no idea how to obtain the ARM Client in my service & IDK how to authenticate it
1 replies
Blazor Wasm: Avoiding frequent & slow rerendering of the component
My client is listening to a websocket who is frequently sending dataobjects with 1 image each to the client.
The wasm project should display those dataobjects immediately after receiving them (as a card with a image)
This makes the UI very laggy
I simply run StateHasChanged each time a new object arrives
What is the propper way of doing this?
27 replies
MapPost: Parameters are null
This is my Post endpoint
When sending a Request with this Payload
the Endpoint is hit, but the Name-Property in RegisterDto is still null
with [FromBody] and [AsParameters] i have the same issue
What does the JSON have to look like so that it works?
9 replies
ASP Web-API with MessageBroker - Post was processed, what now?
I'm trying to seperate the ASP Web-API from the workers which interact with the daterbase using RabbitMQ as MessageBroker. Im starting with a CRUD.
So the controller got the postrequest, a message was created and and the consumer (worker) saved the object in the db. But the Web-API is supposed to return the Id of the saved object or some error if the worker failed.
So how does it get the id from the worker?
Should a create a 2nd massage in the worker and make the API-Project subscribe to it?
Am i supposed to build this more like CQRS and just inform the User with 200, the post-request was received and inform him again later when the request was processed using a different microservice?
8 replies
Is there a good way to use a object from Type Type in a generic method?
I have a lot of serialized different Objects in a Database along with their typename as string. All of them share the same Interface. Now i want to deserialize all of those to the right Objects.
Therefore i created a Application scanner that collects the Types for all those objects. Now i want to compare the typenames and deserialize them in a loop.
All of this feels wrong.
sth. like this
8 replies
Best API for low latency
I have a small client application that does simple calculations. Now i want to make it report the results to my asp server. Other clients in the same wifi network should take the results and also work on those calculations. So they have to exchange their results as fast as possible. The rest api is too slow for that though. I thought that a gRPC stream would be more suitable for this Task. UDP maybe? Does a faster API even help even if i want exchange data without a direct ethernet connection?
76 replies
ASP Minimal API Deserializor - allow Fields
I want my minimal api to be able to deserialize that tuple. The System.Test cant do that by default though. Typically i fix that with those serializor options, but i dont know how to provide my settings for the minimal api
3 replies
Why is my code not thread save?
is in a loop
tasks is a list of tasks which add elements to a list;
Selection is a method which edits the list (cuts off the worse results that were delivered when "tasks" were executed)
I thought that all tasks are finished when starting Selection() and i start it like this afterwards.
But i always get the following error after a few cycles:
16 replies
The right HTTP-Verb for assigning things
Using minimal API and im wondering what Http-Verb is appropriate for this. Get seems wrong because i dont get something. I just have 2 IDs in the uri. Entity Framework is using them to assign a different element from table A to table B
3 replies
ASP MinimalAPI Autzhorization
Hey, I would like to know how to create permissions dynamically.
I know how to use things like Roles and the Authorized Keyword so far.
But in my case, i want to enable deleting/updating entries only to people who created those / or which are related to these entries.
For example i have a m:n relation between users and entityA.
Right now i have a prop in the "in-between-table" that defines the relation between those.
If somebody wants to change the entity, i take the userId in the endpoint and check in a linq querry if the relationship allows that.
But this approach seems a bit weird since its in a completely different location than the authorization system of ms-identity and identity-server
do those have a feature i could use to make authorization in a better way?
20 replies
ASP, Identity, Blazor Give Permission for delete to specific users.
In my Database i have a entity that acts like a group for multible users. There is a m:n relation between groups and users(IdentityUser)
I want that only users in those groups are able to create/update/delete group related data. Like events in a scheduler or messages in the group-chat.
But i can't think of a neat way to prevent other users from adding/deleting things to a group they are not part of. Right now i always get the userId in the controller and then a linq statement checks if there is a user with this Id in the group he wants to access.
This feels a bit wrong because i have to make sure that nobody else gets hold of a foreign userId and it's in a different location than the default role based authorization i use.
74 replies