Install SSL Certificate on Azure Web App

To secure your site, extract the files from STAR.mydomain.com_cert.zip and STAR.mydomain.com_key.zip on your computer and upload them to your server. Here is a list of the most common server types and how to install SSL on them. If you created a CSR and private key in-browser during SSL activation, you will find key.zip in your downloads folder. How to install an... » read more

Error Using Microsoft Identity Platform Entra (Azure Active Directory) for App Sign In

Error: You get the following error when setting up your web application to use the Entra (Azure Active Directory) for authentication… AADSTS50011: The redirect URI ‘https://xxxxxx/authentication/login-callback’ specified in the request does not match the redirect URIs configured for the application ‘xxxxxxx’. Make sure the redirect URI sent in the request matches one added to your... » read more

Azure Active Directory Entra Group Membership Claims attribute

https://learn.microsoft.com/en-us/aspnet/core/blazor/security/webassembly/microsoft-entra-id-groups-and-roles?view=aspnetcore-7.0 https://learn.microsoft.com/en-us/aspnet/core/blazor/security/webassembly/graph-api?pivots=graph-sdk-5&view=aspnetcore-7.0 https://learn.microsoft.com/en-us/graph/sdks/sdks-overview Scopes To permit Microsoft Graph API calls for user profile, role assignment, and group membership data: A CLIENT app is configured with the User.Read scope (https://graph.microsoft.com/User.Read) in the Azure portal. A SERVER app is configured with the GroupMember.Read.All scope (https://graph.microsoft.com/GroupMember.Read.All) in the Azure portal. The preceding scopes are required in addition to the scopes required in ME-ID deployment scenarios described by the... » read more

Secure a hosted ASP.NET Core Blazor WebAssembly app with Microsoft Entra ID

https://learn.microsoft.com/en-us/aspnet/core/blazor/security/webassembly/hosted-with-microsoft-entra-id?view=aspnetcore-7.0 Walkthrough The subsections of the walkthrough explain how to: Create a tenant in Azure Register a server API app in Azure Register a client app in Azure Create the Blazor app Modify the Server appsettings.json configuration Modify the default access token scope scheme Run the app Create a tenant in Azure Follow the guidance in Quickstart: Set up... » read more

Create Self-Signed Certificate

Open PowerShell as administrator Run the following command: C:\Users\user01> New-SelfSignedCertificate -Subject “CN=OrgCert1234” -CertStoreLocation “cert:\LocalMachine\My” Now, what we have to do is obtain the private key certificate file to be able to upload it to Azure: Press the windows key Type Manage Computer Certificates and press Enter Go to Personal (on the left), then Certificates Double-click on the... » read more

Deployment error from new Development Computer- HTTP Error 500.30 – ASP.NET Core app failed to start due to certificate authentication issue

Issue: Getting the following error message after deploying a Blazor web app from a new development computer Resolution: Update “Self Signed Certificate” to Blazor web app and web app server config. Need to create a new self signed certificate on development computer, upload to Azure web app. Then update the self signed certificate section of... » read more

Setup Account confirmation and password recovery in ASP.NET Core

Setup SendGrid Account Setup account at https://sendgrid.com/ Get API key. NuGet and install SendGrid to app. Blazor WebAssembly Setup Note: Add to “Server” project, not “Client” project. Need to setup user secrete for the application first. Add “SendGridUser” and “SendGridKey” user secrete to Server project. secrets.json Add classes to Services folder AuthMessageSenderOptions.cs EmailSender.cs Areas.Identity.Pages.Account.RegisterConfirmation page... » read more

Setting up Certificate for IdentityServer4 in Azure App Service

Error: Publishing a new Blazor app with Identity to Azure App Service giving the following error: HTTP ERROR 500 Fix: Steps: Windows PowerShell (Admin mode) Manage computer certificates Certificates – Local Computer -> Personal -> Certificates Right click on certificate -> Export Enable Password and select “TripleDES-SHA1” Upload pfx file to Azure App Service Get... » read more