Joonas Westlin is a software developer at Zure and an Azure MVP specializing in building cloud applications on Microsoft Azure. He focuses on ASP.NET Core, TypeScript, and identity solutions using Azure Active Directory.
91 articles from this blog
Explains methods to securely manage secrets like API keys in .NET apps, avoiding risks of storing them in version control systems like Git.
Explains best practices for building secure multi-tenant Azure AD applications that restrict login to a specific set of known tenants.
Explains the OAuth Resource Owner Password Credentials (ROPC) grant flow in Azure AD, detailing its purpose and why it should be avoided in modern applications.
Explains security risks of wildcard reply URLs in MSAL.js and demonstrates a safer alternative using session storage for post-login redirects.
Compares using Azure AD groups vs. application roles for authorization, discussing pros, cons, and best practices for developers.
Explains how to securely store ASP.NET Core Data Protection keys in Azure Blob Storage and encrypt them with Azure Key Vault to prevent authentication issues during deployment slot swaps.
A technical overview of the new .NET Cosmos DB SDK v3, covering setup, queries, and common pitfalls.
A technical guide on implementing Azure AD single sign-out in ASP.NET Core applications, explaining configuration and the SameSite cookie requirement.
A technical guide on using Azure Managed Identities to authenticate and access Azure Service Bus, eliminating the need for stored connection strings.
Part 2 of a guide on implementing Azure AD authentication in ASP.NET Core APIs, covering custom permissions and multi-tenant configuration.
Summary of July 2018 updates to Azure AD Managed Service Identity, including new user-assigned identities and supported services.
A technical guide on setting up Azure AD authentication for ASP.NET Core APIs, covering app registration, scope validation, and creating a test client.
Explains how to use Azure AD authentication and Managed Service Identity for secure, role-based access to Azure Storage Blobs and Queues.
Guide on using Azure AD Managed Service Identity with application permissions to securely call APIs without storing secrets.
Explains how to implement an opt-in calendar feature for an Azure AD v1 app by creating a separate app to manage delegated permissions.
A developer's guide to Azure AD v2 and MSAL, covering converged authentication, app registration, and OpenID Connect compliance.
A technical guide on how to use C#'s await keyword to interoperate with JavaScript Promises within a Blazor application.
Explains how to use a single shared RESX file for localizing data annotation error messages across multiple view models in ASP.NET Core 2.0.
Explores configuring multi-tenant Azure AD applications with chained API calls and cyclic dependencies, detailing setup and known client applications.
A guide to securely managing configuration in ASP.NET Core using Azure Key Vault and Azure AD Managed Service Identity (MSI) for credential-free access.
