You're reading from Tools and Skills for .NET 8 Get the career you want with good practices and patterns to design, debug, and test your solutions 

Product type Paperback

Published in Jul 2024

Publisher Packt

ISBN-13 9781837635207

Length 778 pages

Edition 1st Edition

Languages

Tools

.NET

Concepts

Cloud Native

Author (1):

Mark J. Price

View More author details

Table of Contents (22) Chapters

Preface

1. Introducing Tools and Skills for .NET

2. Making the Most of the Tools in Your Code Editor FREE CHAPTER

3. Source Code Management Using Git

4. Debugging and Memory Troubleshooting

5. Logging, Tracing, and Metrics for Observability

6. Documenting Your Code, APIs, and Services

7. Observing and Modifying Code Execution Dynamically

8. Protecting Data and Apps Using Cryptography

9. Building an LLM-Based Chat Service

10. Dependency Injection, Containers, and Service Lifetime

11. Unit Testing and Mocking

12. Integration and Security Testing

13. Benchmarking Performance, Load, and Stress Testing

14. Functional and End-to-End Testing of Websites and Services

15. Containerization Using Docker

16. Cloud-Native Development Using .NET Aspire

17. Design Patterns and Principles

18. Software and Solution Architecture Foundations

19. Your Career, Teamwork, and Interviews

20. Epilogue

21. Index

Authenticating and authorizing users

Authentication is the process of verifying the identity of a user by validating their credentials against some authority. Credentials include a username and password combination, or biometric data like a fingerprint or face scan. Once authenticated, the authority can make claims about the user, for example, what their email address is, and what groups or roles they belong to.

Authorization is the process of verifying membership of groups or roles before allowing access to resources such as application functions and data. Although authorization can be based on individual identity, it is good security practice to authorize based on group or role membership (which can be indicated via claims) even when there is only one user in the role or group. This is because that allows the user’s membership to change in the future without reassigning the user’s individual access rights.

For example, instead of assigning access rights for...