This template can be used to create a Blazor WASM application hosted in an ASP.NET Core Web app using OpenID Connect to authenticate using the BFF security architecture. (server authentication) This removes the tokens from the browser and uses cookies with each HTTP request, response. The template also adds the required security headers as best it can for a Blazor application.
- WASM hosted in ASP.NET Core 8
- BFF (backend for frontend) with Standard OpenID Connect
- OAuth2 and OpenID Connect OIDC
- No tokens in the browser
dotnet new install Blazor.BFF.OpenIDConnect.Template
dotnet new blazorbffoidc -n YourCompany.Bff --HttpsPortCustom 44348
Use the -n or --name parameter to change the name of the output created. This string is also used to substitute the namespace name in the .cs file for the project.
Add the OpenID Connect App registration settings
{
"OpenIDConnectSettings": {
"Authority": "--your-authority--",
"ClientId": "--client ID--",
"ClientSecret": "--client-secret (user secrets)--"
},
dotnet new uninstall Blazor.BFF.OpenIDConnect.Template
- NetEscapades.AspNetCore.SecurityHeaders
https://github.com/andrewlock/NetEscapades.AspNetCore.SecurityHeaders