You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
[Help wanted] How to: Set up a asp.net server with trusted server auth ui for e.g login but using uno instead of RazorPages? And integrating server project generally into the solution!
#2839
Stuck since months with getting auth working properly at serverside instead of sending credentials across untrusted routes as the current docs seem to advise us. Now that the kiotaHttp has been added, I am trying to use duende for a more professional approach for my WMS application.
Auth through oAuth2 with: Client UI sending cookie auth request > my Server (minimal api) gets the request > do user identity validation with secure! Credentials handling best with seperated identity model or similar > server gots him loged in > sending to external API > callback to my server > (Client) state user as successful logged in > request my server for sending a any auth needing request > server challenges login state using required pkce > fetching data as requested > responds accordingly
is my first todo because without it, I also not get any real data that would make sense to use an ui on the client apps. Its not valid to do the login ui in the client app as this would send vulnurable credentials across the Web which could get attacked
evaluating adding another unoapp that should be the wasm equivalent to RazorPages or (alternative unknown but would most likely not be possible with uno 😔)
Remarks to identity Server project
I did add the IdentityServer project with EF primary as lookup and inspiration how that could work, because Uno doesn't provide any actual real world secure credentials handling server project at the moment
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
Uh oh!
There was an error while loading. Please reload this page.
-
Stuck since months with getting auth working properly at serverside instead of sending credentials across untrusted routes as the current docs seem to advise us. Now that the kiotaHttp has been added, I am trying to use duende for a more professional approach for my WMS application.
Created repo with current state:
https://github.com/DevTKSS/DevTKSS.MyManufacturerERP
Auth through oAuth2 with:
Client UI sending cookie auth request > my Server (minimal api) gets the request > do user identity validation with secure! Credentials handling best with seperated identity model or similar > server gots him loged in > sending to external API > callback to my server > (Client) state user as successful logged in > request my server for sending a any auth needing request > server challenges login state using required pkce > fetching data as requested > responds accordinglyis my first todo because without it, I also not get any real data that would make sense to use an ui on the client apps. Its not valid to do the login ui in the client app as this would send vulnurable credentials across the Web which could get attacked
evaluating adding another unoapp that should be the wasm equivalent to RazorPages or (alternative unknown but would most likely not be possible with uno 😔)
Remarks to identity Server project
I did add the IdentityServer project with EF primary as lookup and inspiration how that could work, because Uno doesn't provide any actual real world secure credentials handling server project at the moment
Beta Was this translation helpful? Give feedback.
All reactions