Adding external authentication providers like Azure AD or Google to a .NET Core Minimal API involves integrating the appropriate authentication libraries and configuring the services to use these providers. Below is a modified version of the original code that adds external authentication using Azure AD and Google.<\/p>\n\n\n\n
First, you need to install the necessary NuGet packages to support authentication:<\/p>\n\n\n\n
bashCopy codedotnet add package Microsoft.AspNetCore.Authentication.JwtBearer\ndotnet add package Microsoft.Identity.Web\ndotnet add package Microsoft.Identity.Web.UI\ndotnet add package Microsoft.AspNetCore.Authentication.Google\n<\/code><\/pre>\n\n\n\nStep 2: Configure Authentication in Program.cs<\/code><\/h3>\n\n\n\nModify the Program.cs<\/code> file to configure authentication using Azure AD and Google:<\/p>\n\n\n\ncsharpCopy codeusing Microsoft.AspNetCore.Authentication.JwtBearer;\nusing Microsoft.Identity.Web;\nusing Microsoft.AspNetCore.Authentication.Cookies;\nusing Microsoft.AspNetCore.Authentication.Google;\n\nvar builder = WebApplication.CreateBuilder(args);\n\n\/\/ Configure Azure AD Authentication\nbuilder.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)\n .AddMicrosoftIdentityWebApi(options =>\n {\n builder.Configuration.Bind(\"AzureAd\", options);\n });\n\n\/\/ Configure Google Authentication\nbuilder.Services.AddAuthentication(options =>\n{\n options.DefaultAuthenticateScheme = CookieAuthenticationDefaults.AuthenticationScheme;\n options.DefaultChallengeScheme = GoogleDefaults.AuthenticationScheme;\n})\n.AddCookie()\n.AddGoogle(GoogleDefaults.AuthenticationScheme, options =>\n{\n options.ClientId = builder.Configuration[\"Authentication:Google:ClientId\"];\n options.ClientSecret = builder.Configuration[\"Authentication:Google:ClientSecret\"];\n});\n\nbuilder.Services.AddAuthorization();\n\nvar app = builder.Build();\n\n\/\/ Enable authentication middleware\napp.UseAuthentication();\napp.UseAuthorization();\n\nvar products = new List<Product>\n{\n new Product { Id = 1, Name = \"Product 1\", Price = 10.00m },\n new Product { Id = 2, Name = \"Product 2\", Price = 20.00m },\n new Product { Id = 3, Name = \"Product 3\", Price = 30.00m }\n};\n\n\/\/ Secure the endpoints with [Authorize] attribute\n\napp.MapGet(\"\/products\", () =>\n{\n return Results.Ok(products);\n}).RequireAuthorization();\n\napp.MapGet(\"\/products\/{id:int}\", (int id) =>\n{\n var product = products.FirstOrDefault(p => p.Id == id);\n if (product is null)\n {\n return Results.NotFound();\n }\n return Results.Ok(product);\n}).RequireAuthorization();\n\napp.MapPost(\"\/products\", (Product product) =>\n{\n product.Id = products.Max(p => p.Id) + 1;\n products.Add(product);\n return Results.Created($\"\/products\/{product.Id}\", product);\n}).RequireAuthorization();\n\napp.MapPut(\"\/products\/{id:int}\", (int id, Product updatedProduct) =>\n{\n var product = products.FirstOrDefault(p => p.Id == id);\n if (product is null)\n {\n return Results.NotFound();\n }\n\n product.Name = updatedProduct.Name;\n product.Price = updatedProduct.Price;\n\n return Results.Ok(product);\n}).RequireAuthorization();\n\napp.MapDelete(\"\/products\/{id:int}\", (int id) =>\n{\n var product = products.FirstOrDefault(p => p.Id == id);\n if (product is null)\n {\n return Results.NotFound();\n }\n\n products.Remove(product);\n return Results.NoContent();\n}).RequireAuthorization();\n\napp.Run();\n<\/code><\/pre>\n\n\n\nStep 3: Configure Azure AD and Google in appsettings.json<\/code><\/h3>\n\n\n\nAdd the configuration settings for Azure AD and Google to your appsettings.json<\/code> file:<\/p>\n\n\n\njsonCopy code{\n \"AzureAd\": {\n \"Instance\": \"https:\/\/login.microsoftonline.com\/\",\n \"Domain\": \"yourtenant.onmicrosoft.com\",\n \"TenantId\": \"your-tenant-id\",\n \"ClientId\": \"your-client-id\",\n \"ClientSecret\": \"your-client-secret\"\n },\n \"Authentication\": {\n \"Google\": {\n \"ClientId\": \"your-google-client-id\",\n \"ClientSecret\": \"your-google-client-secret\"\n }\n }\n}\n<\/code><\/pre>\n\n\n\nStep 4: Secure the Endpoints<\/h3>\n\n\n\n
Notice that in the code, the .RequireAuthorization()<\/code> method is used to secure each endpoint. This ensures that only authenticated users can access these endpoints.<\/p>\n\n\n\nStep 5: Test the Application<\/h3>\n\n\n\n
Run the application and try accessing the secured endpoints. When you navigate to one of the secured routes, you should be redirected to the Azure AD or Google login page, depending on the configured provider.<\/p>\n\n\n\n
Summary:<\/h3>\n\n\n\n\n- Authentication Setup:<\/strong> Configured external authentication using Azure AD and Google.<\/li>\n\n\n\n
- Endpoint Security:<\/strong> Used
.RequireAuthorization()<\/code> to secure API endpoints.<\/li>\n\n\n\n- Configuration:<\/strong> Managed authentication settings through
appsettings.json<\/code>.<\/li>\n<\/ul>\n\n\n\nThis setup allows your .NET Core Minimal API to authenticate users via external providers like Azure AD and Google, adding a robust security layer to your RESTful endpoints.<\/p>\n\n\n\n
References<\/h3>\n\n\n\n
Here are some useful web references that can help you increase your knowledge of implementing REST endpoints using .NET Core Minimal API with external authentication providers like Azure AD or Google:<\/p>\n\n\n\n
1. Microsoft Learn – Minimal APIs in .NET<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> This documentation provides an in-depth introduction to Minimal APIs in .NET, covering how to create RESTful endpoints and integrate with authentication providers.<\/li>\n\n\n\n
- Microsoft Learn – Minimal APIs in .NET<\/a><\/li>\n<\/ul>\n\n\n\n
2. Microsoft Learn – Azure AD Authentication in ASP.NET Core<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> Detailed guide on integrating Azure Active Directory authentication with ASP.NET Core, including how to set up and configure Azure AD for your application.<\/li>\n\n\n\n
- Microsoft Learn – Azure AD Authentication in ASP.NET Core<\/a><\/li>\n<\/ul>\n\n\n\n
3. Microsoft Identity Web Documentation<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> Documentation for the Microsoft.Identity.Web library, which simplifies integrating Azure AD authentication into .NET Core applications, including Minimal APIs.<\/li>\n\n\n\n
- Microsoft Identity Web Documentation<\/a><\/li>\n<\/ul>\n\n\n\n
4. Microsoft Learn – Google Authentication in ASP.NET Core<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> A tutorial on how to set up Google authentication in ASP.NET Core applications, including configuration and implementation details.<\/li>\n\n\n\n
- Microsoft Learn – Google Authentication in ASP.NET Core<\/a><\/li>\n<\/ul>\n\n\n\n
5. Code Maze – Authentication in ASP.NET Core with Google<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> A step-by-step guide on implementing Google authentication in ASP.NET Core, with practical examples that can be adapted for Minimal APIs.<\/li>\n\n\n\n
- Code Maze – Authentication with Google<\/a><\/li>\n<\/ul>\n\n\n\n
6. YouTube – ASP.NET Core Minimal APIs with Authentication by Tim Corey<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> A video tutorial that walks through setting up Minimal APIs in ASP.NET Core with authentication, covering both Azure AD and Google as providers.<\/li>\n\n\n\n
- YouTube – ASP.NET Core Minimal APIs with Authentication<\/a><\/li>\n<\/ul>\n\n\n\n
7. GitHub – ASP.NET Core Minimal API Examples with Authentication<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> A GitHub repository with examples of Minimal APIs in .NET Core that include integration with external authentication providers like Azure AD and Google.<\/li>\n\n\n\n
- GitHub – ASP.NET Core Minimal API Examples<\/a><\/li>\n<\/ul>\n\n\n\n
8. Pluralsight – Authentication and Authorization in ASP.NET Core<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> An online course that covers various authentication and authorization mechanisms in ASP.NET Core, including the use of external providers like Azure AD and Google.<\/li>\n\n\n\n
- Pluralsight – Authentication and Authorization in ASP.NET Core<\/a><\/li>\n<\/ul>\n\n\n\n
9. Azure Active Directory Developer Documentation<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> Comprehensive documentation for developers integrating Azure AD into their applications, including code samples and best practices.<\/li>\n\n\n\n
- Azure Active Directory Developer Documentation<\/a><\/li>\n<\/ul>\n\n\n\n
10. Google Identity Platform Documentation<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> Official documentation for Google Identity services, including OAuth 2.0 and OpenID Connect, and how to integrate them with your .NET Core applications.<\/li>\n\n\n\n
- Google Identity Platform Documentation<\/a><\/li>\n<\/ul>\n\n\n\n
11. Microsoft Identity and Authentication Library (MSAL)<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> Documentation and tutorials for using MSAL (Microsoft Authentication Library) to authenticate users with Azure AD in .NET Core applications.<\/li>\n\n\n\n
- MSAL Documentation<\/a><\/li>\n<\/ul>\n\n\n\n
12. TutorialsPoint – ASP.NET Core Minimal APIs<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> A tutorial that introduces Minimal APIs in ASP.NET Core and discusses integrating them with authentication and other middleware.<\/li>\n\n\n\n
- TutorialsPoint – ASP.NET Core Minimal APIs<\/a><\/li>\n<\/ul>\n\n\n\n
13. Stack Overflow – ASP.NET Core Minimal APIs with External Authentication<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> Community-driven Q&A on implementing Minimal APIs in ASP.NET Core with external authentication providers like Azure AD and Google.<\/li>\n\n\n\n
- Stack Overflow – ASP.NET Core Minimal APIs with Authentication<\/a><\/li>\n<\/ul>\n\n\n\n
14. Reddit – .NET Core Minimal APIs and Authentication Discussion<\/strong><\/h3>\n\n\n\n\n- Overview:<\/strong> A Reddit thread discussing best practices for using Minimal APIs with authentication in .NET Core, with insights and advice from experienced developers.<\/li>\n\n\n\n
- Reddit – .NET Core Minimal APIs and Authentication<\/a><\/li>\n<\/ul>\n\n\n\n
15. Dev.to – ASP.NET Core Minimal API Authentication<\/strong><\/h3>\n\n\n\n