Upgrade to Pro — share decks privately, control downloads, hide ads and more …

.NET Day 2023: Don't Trust the Browser: Secure ...

dotnetday
September 02, 2023

.NET Day 2023: Don't Trust the Browser: Secure SPAs with BFF

OpenIdConnect and OAuth are the industry standards to protect both frontend and backends applications with tokens. Sending tokens to the browser is like trusting a bunch of lions to keep a cow safe. So why do we do it in our Single Page Applications using the implicit flow for example? Don't. BFF or Backend For Frontend solves this problem. Come and find out how this works using ASP.NET Core on the server and Blazor WebAssembly on the browser side.

dotnetday

September 02, 2023
Tweet

More Decks by dotnetday

Other Decks in Technology

Transcript

  1. - -