Thanks a lot for the feedback. These kind of comments motivates me a lot to make good stuff. Please subscribe to the channel if you have not subscribed yet. Thanks.
Thank you for the feedback. We can take help of visual studio too. No need to write code manually. Here is the video - ruclips.net/video/ZO7C6YmalXg/видео.html Please subscribe to the channel if you have not subscribed yet. Thanks
@@azureteachnet Subscribed! I wanted to follow up and tell you that I walked through the steps you laid out on an existing web app that was originally .Net Core 3.1 but refactored to .Net 6 and it still worked without any issues. My mind is blown, you saved me a ton of time, thanks sooo much! :)
Great vidéo. Just a little side note : I would prefer to do not use Scaffold operation. Some of the users are not using the same version of Visual Studio as you. Or they are using different IDE (VS code, Riders) It would be better if you implement manually the scaffold components.
Thanks for the suggestion. I will consider it in my future videos. Please subscribe to the channel if you have not subscribed yet. There are a lot videos on Azure in the channel and more to come in future.
Hello, do you know how we can get the logged in user's full name, please? It'll be great if we can display 'Hello ' instead of 'Hello ' at the top. Thank you!
You can read it from User Claims. Try this. @User.Claims.FirstOrDefault(x=>x.Type.Equals("name")).Value. This will give you the name attribute defined with the user. If you want both First Name and Last Name, you have to enable it from optional claims. Goto App Registration-->Token Configuration-->Add Optional Claim-->ID-->Choose family_name & given_name-->Add-->Turn On Graph Permission. After that, you can get the first name and last name from User.Claims. Please subscribe to AzureTeach. Net if you have not subscribed yet.🙂
You can use User class in your controller. From User you can find role claims. You can get the User from HttpContext. Please subscribe to the channel if you have not subscribed yet. Thanks
Thanks for the comment. Yes. Instead of doing all these things manually, you can take help of visual studio to configure the Azure AD. You can click on the connected services under the project, Choose Microsoft Identity and configure the azure ad. Please check - ruclips.net/video/ZO7C6YmalXg/видео.html Please subscribe to the channel, if you have not subscribed yet. Thanks
@@azureteachnet Thanks for your reply. Do you think I can do this with VB.Net languages instead of C#. Right now by using C# it can run without any problem.
you might be using .Net6. This is older version. You can refer to this video - ruclips.net/video/ZO7C6YmalXg/видео.html . Take help of Visual studio and generate the code. Later you may have to upgrade the packages. Please subscribe and share my channel if it helps. Thanks
Hi, I have an angular app and a .NET 6 API. 1) I am able to login to the Angular app using Azure AD, and call the protected API resources. The API is also registered as an azure ad app. 2) Now I want to perform profile management in which a super admin can assign various permissions to various users. I am thinking of doing it at the application level and not at Azure AD level, because the Azure Admin will not have idea of the application's permissions and granularity. 3) I am thinking of sending the logged in user's details to the API once the login is successful at Angular end, so that it can be saved to the DB. 4) Once I have users details in the DB, I can write a filter which will delegate which users have what permissions. 5) How can I capture user details like id, name, email etc. at Angular end after successful login and send it back to the .NET API for save purposes? 6) I know I will have to use Graph API in this case. Do you happen to have some pointers? Is my approach correct? Thanks and Regards
If I understand your requirement correctly, you want to allow super admins to manage the details of other users. I did not understand why we need to save the user details to DB once logged in. Instead, create a role super admin and assign it to the admin users. Create an action in your api, which will do the user management which you are expecting. Authorize that action only for Super Admin role. You can get the user details from Graph Api As you mentioned.
@@azureteachnet Thanks for replying. I guess my comment wasn't much clear. We create users in Azure portal, right? For them to login at Angular side using Azure AD. How do we get these users in the application database automatically? Either I give a button at Admin side to sync created users from Azure AD. Or whenever an Azure user logs into the Angular portal, at that time I call an API and save that very user to my database. Once I have user details in my db, I can create a profile management module. I do not want to create and manage roles using Azure AD. Hope the question is clear. Regards
did not get you... what do you mean inserting microsoft authentication? If you want to add azure ad to existting asp.net core application, this video would help you... you can configure it with a wizard too following connected services option. you can checkout the video in the channel. Please subscribe to the channel if you have not subscribed yet.
@@azureteachnet I referred the video and implemented this azure Ad authentication to my existing asp.net core web app but after successfully login it shows error like “ an unhandled exception occurred while processing the request… exception : OpenIdConnectAuthenticationHandler : message. State is null or empty
@@sayaanashaikh694 post screenshots in this facebook group - facebook.com/groups/203337538580278 Dont include client specific information as it may be an issue to you. If it is practice code.. not an issue to post
@@ArtandLifestyle-t4z do you have startup.cs file in your project and also, do you see connected services under your project file in solution explorer?
One way we can do is, we have to write our own account controller, sign in action and in that we have to handle the login and preserving the access token. From that you can redirect to the page you want. Asp.net core mvc has Signin method and to that we can pass the authentication mechanisms. Here in this case, it is openid connect
Hi , i have implemented same code in my .net core .i can't able to same Claims after Auzure ad login, if i am comment app.useAuthentication i can able to save the claims, any suggestion ?
your question is not clear. Are you trying to add custom claims to the user? You can directly add the claims to user using azure portal. Are you trying to do with code?
@@azureteachnet thanks for reply, i am not adding any claims Azure AD ,Because of the Azure AD and Web application user details different , after the AD authentication i am getting email from the Assure return funtion, based on the emailId fetching details from DB and need to save the claims, here claims not saved , if i am comment the App.Useauthentication claims saved properly.
same web application user have two type of the login one is internal another one is External ,external user only using ad login user id only different , other details same . here use same controller and different action Any type of the user logged in i need to save claim's
Hi, I'm using .NET 6 and it doesn't contain startup.cs file. While in program.cs file it is giving me this error "configuration is a type which is not valid in given context" For this line of code: builder.Services.AddMicrosoftIdentityWebAppAuthentication(Configuration, "AzureAd"); Can you pls help me to resolve this issue...
@@motivationalbeast3569 This fix should work for you. If it works, Please share my channel to your friends who works on .net technologies :-) Possible ways to fix the issue: 1. use builder.Services.AddMicrosoftIdentityWebAppAuthentication(builder.Configuration.GetSection("AzureAd"));. If it did not fix the issue do step 2. 2. Instead of adding the azure AD manually, we can take help of visual studio. In solution explorer, under your project, you can see connected services. Double click on that. It will show you two sections. In Service Dependencies Section, click on "+" symbol. Choose Azure AD, follow the wizard. In the Wizard you may have to select your app registration. Once you complete the Wizard, It will generate Azure AD code for you.
@@azureteachnet Brother first one didn't worked for me it give error: The clientId option must be provided. On 2nd solution I didn't find Azure AD named specifically in Service Dependencies
@@motivationalbeast3569 What is the name of AzureAd configuration in your appsettings.json? did you provide clientid, instance,tenantid in your azuread configuration in appsettings.json?. Option 2 - In service dependencies, It should show you "Microsoft Identity Platform" with description "Authentication for your application using Azure AD or Azure AD B2C.
![Diggy Graves - Red Vineyard [Official Lyric Video]](http://i.ytimg.com/vi/8Ro085T0mnQ/mqdefault.jpg)
Very helpful for everyone, Keep doing the best tutorial. Thanks
Best channel for quick and to the point learning. Great, hats off to you.
Thanks a lot for the feedback. These kind of comments motivates me a lot to make good stuff. Please subscribe to the channel if you have not subscribed yet. Thanks.
@@azureteachnet Already done and pressed the bell icon as well :)
simple and straight to point topic with right example on how to authenticate with delegated permissions and provide the redirect uri.
Very nice straightforward walk-through to a very needed and potentially complicated topic. Great job!
Thank you for the feedback. We can take help of visual studio too. No need to write code manually. Here is the video - ruclips.net/video/ZO7C6YmalXg/видео.html
Please subscribe to the channel if you have not subscribed yet. Thanks
@@azureteachnet Subscribed! I wanted to follow up and tell you that I walked through the steps you laid out on an existing web app that was originally .Net Core 3.1 but refactored to .Net 6 and it still worked without any issues. My mind is blown, you saved me a ton of time, thanks sooo much! :)
Merci beaucoup, très bon tutoriel
Good video...thank you aacharya for nice explanation..
very useful tutorial!
Thank you
Really Helped.Thank you so much.👏
Thank you for feedback. Please subscribe to the channel if you have not subscribed yet.
thank you for the video, I want to ask if there is a way to make our UI instead the Microsoft one?
Is this openid connect protocol we used for authentication of user?
Great vidéo.
Just a little side note : I would prefer to do not use Scaffold operation. Some of the users are not using the same version of Visual Studio as you. Or they are using different IDE (VS code, Riders)
It would be better if you implement manually the scaffold components.
Thanks for the suggestion. I will consider it in my future videos. Please subscribe to the channel if you have not subscribed yet. There are a lot videos on Azure in the channel and more to come in future.
Hello, do you know how we can get the logged in user's full name, please? It'll be great if we can display 'Hello ' instead of 'Hello ' at the top. Thank you!
You can read it from User Claims. Try this. @User.Claims.FirstOrDefault(x=>x.Type.Equals("name")).Value. This will give you the name attribute defined with the user.
If you want both First Name and Last Name, you have to enable it from optional claims.
Goto App Registration-->Token Configuration-->Add Optional Claim-->ID-->Choose family_name & given_name-->Add-->Turn On Graph Permission.
After that, you can get the first name and last name from User.Claims.
Please subscribe to AzureTeach. Net if you have not subscribed yet.🙂
@@azureteachnet Thank you so much!
Great video, can you please share how to read token to get the login user information like role
You can use User class in your controller. From User you can find role claims. You can get the User from HttpContext.
Please subscribe to the channel if you have not subscribed yet. Thanks
Great job, just wonder can I develop using Asp.Net Visual Basic language instead of C#? Thank you
Thanks for the comment. Yes. Instead of doing all these things manually, you can take help of visual studio to configure the Azure AD.
You can click on the connected services under the project, Choose Microsoft Identity and configure the azure ad. Please check - ruclips.net/video/ZO7C6YmalXg/видео.html
Please subscribe to the channel, if you have not subscribed yet. Thanks
@@azureteachnet Thanks for your reply. Do you think I can do this with VB.Net languages instead of C#. Right now by using C# it can run without any problem.
thank you good tutorial
Please subscribe to AzureTeach.net for more tutorials on Azure and .Net. Thank you.
Can you share the code ? I am not able see the full code of Startup.cs and in new Visual Studio, there is Program.cs and not Startup.cs by default
you might be using .Net6. This is older version. You can refer to this video - ruclips.net/video/ZO7C6YmalXg/видео.html . Take help of Visual studio and generate the code. Later you may have to upgrade the packages. Please subscribe and share my channel if it helps. Thanks
Hi, I have an angular app and a .NET 6 API.
1) I am able to login to the Angular app using Azure AD, and call the protected API resources.
The API is also registered as an azure ad app.
2) Now I want to perform profile management in which a super admin can assign various permissions to various users.
I am thinking of doing it at the application level and not at Azure AD level, because the Azure Admin will not have idea of the application's permissions and granularity.
3) I am thinking of sending the logged in user's details to the API once the login is successful at Angular end, so that it can be saved to the DB.
4) Once I have users details in the DB, I can write a filter which will delegate which users have what permissions.
5) How can I capture user details like id, name, email etc. at Angular end after successful login and send it back to the .NET API for save purposes?
6) I know I will have to use Graph API in this case.
Do you happen to have some pointers? Is my approach correct?
Thanks and Regards
If I understand your requirement correctly, you want to allow super admins to manage the details of other users. I did not understand why we need to save the user details to DB once logged in. Instead, create a role super admin and assign it to the admin users. Create an action in your api, which will do the user management which you are expecting. Authorize that action only for Super Admin role. You can get the user details from Graph Api As you mentioned.
@@azureteachnet Thanks for replying.
I guess my comment wasn't much clear.
We create users in Azure portal, right? For them to login at Angular side using Azure AD.
How do we get these users in the application database automatically?
Either I give a button at Admin side to sync created users from Azure AD.
Or whenever an Azure user logs into the Angular portal, at that time I call an API and save that very user to my database.
Once I have user details in my db, I can create a profile management module.
I do not want to create and manage roles using Azure AD.
Hope the question is clear.
Regards
@@anurag3487 Both the approaches looks good. But I would prefer giving the sync button to admins.
@@azureteachnet thanks for your inputs.
How to insert Microsoft authentication to an existing asp.net core application?
did not get you... what do you mean inserting microsoft authentication?
If you want to add azure ad to existting asp.net core application, this video would help you... you can configure it with a wizard too following connected services option. you can checkout the video in the channel.
Please subscribe to the channel if you have not subscribed yet.
@@azureteachnet I referred the video and implemented this azure Ad authentication to my existing asp.net core web app but after successfully login it shows error like “ an unhandled exception occurred while processing the request… exception : OpenIdConnectAuthenticationHandler : message. State is null or empty
@@sayaanashaikh694 Did add all the configurations and code similar to the video? Ping me your startup.cs/program.cs code and the configurations
@@azureteachnet where can I send u ?
@@sayaanashaikh694 post screenshots in this facebook group - facebook.com/groups/203337538580278
Dont include client specific information as it may be an issue to you. If it is practice code.. not an issue to post
Please let me know can we do azure ad configure to asp.net application ie aspx appln 4.6 framework and how . PLease reply
I never tried that. Will let you know in 2 days.
@@azureteachnet yes please help solution for same
@@ArtandLifestyle-t4z do you have startup.cs file in your project and also, do you see connected services under your project file in solution explorer?
@@azureteachnet earlier I didn't. Had now I have created and made needed webconfig into startup file it is showing values while debugging wat next..
how can we redirect to other webpages
One way we can do is, we have to write our own account controller, sign in action and in that we have to handle the login and preserving the access token. From that you can redirect to the page you want. Asp.net core mvc has Signin method and to that we can pass the authentication mechanisms. Here in this case, it is openid connect
Hi ,
i have implemented same code in my .net core .i can't able to same Claims after Auzure ad login, if i am comment app.useAuthentication i can able to save the claims, any suggestion ?
your question is not clear. Are you trying to add custom claims to the user? You can directly add the claims to user using azure portal. Are you trying to do with code?
@@azureteachnet thanks for reply, i am not adding any claims Azure AD ,Because of the Azure AD and Web application user details different , after the AD authentication i am getting email from the Assure return funtion, based on the emailId fetching details from DB and need to save the claims, here claims not saved , if i am comment the App.Useauthentication claims saved properly.
same web application user have two type of the login one is internal another one is External ,external user only using ad login user id only different , other details same . here use same controller and different action
Any type of the user logged in i need to save claim's
Hi, I'm using .NET 6 and it doesn't contain startup.cs file. While in program.cs file it is giving me this error
"configuration is a type which is not valid in given context"
For this line of code:
builder.Services.AddMicrosoftIdentityWebAppAuthentication(Configuration, "AzureAd");
Can you pls help me to resolve this issue...
are you using Minimal Api? did you try adding all the required dependencies? Soon I am going to post a video on .Net 6 Minimal API Azure AD.
@@azureteachnet I didn't used minimal API. I just used asp.net mvc web project...
@@motivationalbeast3569
This fix should work for you. If it works, Please share my channel to your friends who works on .net technologies :-)
Possible ways to fix the issue:
1. use builder.Services.AddMicrosoftIdentityWebAppAuthentication(builder.Configuration.GetSection("AzureAd"));.
If it did not fix the issue do step 2.
2. Instead of adding the azure AD manually, we can take help of visual studio. In solution explorer, under your project, you can see connected services. Double click on that. It will show you two sections. In Service Dependencies Section, click on "+" symbol. Choose Azure AD, follow the wizard. In the Wizard you may have to select your app registration. Once you complete the Wizard, It will generate Azure AD code for you.
@@azureteachnet Brother first one didn't worked for me it give error:
The clientId option must be provided.
On 2nd solution I didn't find Azure AD named specifically in Service Dependencies
@@motivationalbeast3569 What is the name of AzureAd configuration in your appsettings.json? did you provide clientid, instance,tenantid in your azuread configuration in appsettings.json?.
Option 2 - In service dependencies, It should show you "Microsoft Identity Platform" with description "Authentication for your application using Azure AD or Azure AD B2C.
Nice video and please share function app as well
Ok coming soon