IdentityServer in Production

This course continues where our popular course Securing ASP.NET using OpenID Connect and IdentityServer ended, with a clear focus on getting a complete IdentityServer architecture up and running in a real live production environment. You will learn how to avoid many of the pitfalls and gotchas involved when you start your deployment journey.

When we say that this course is about deploying to production, we really mean it. In this course we will deploy the services that we create to the public internet, using things like real TLS certificates and automatic build/deploy.

The solution that you will deploy live contains a client, an API and a fully-configured IdentityServer. We are especially proud that we don’t cheat or cut corners in this course. 

Instead we will, for example:

• Store configuration data in separate configuration service
• Log to a separate logging server for analytics and visualization
• Use real HTTPS certificate
• Creating our own signing keys
• Use continuous deployment to deploy our services

This very hands-on course contains an extensive set of exercises that will take you through all the steps involved to create a successful identity solution.

////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////

Do you want a tailor-made delivery internally for your team? Or do you have any questions?
Contact us for more information at sales@edument.se or 040-61 70 720

////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////

Prerequisites

• A basic understanding of OAuth, OpenID-Connect, IdentityServer and ASP.NET Core, similar to what is covered in the Securing ASP.NET using OpenID Connect and IdentityServer course
• Good C# skills
• Very basic Git version control skills

Target audience

Developers who want to learn step-by-step how to deploy an IdentityServer solution to the public internet in a secure way. If you are using version 4.x of IdentityServer, then this course is still very relevant as most concepts in this course are the same between version 4.x and 5.x that we use in this course.

Course details

We recommend that you have a good laptop that can run multiple instances of Visual Studio and at least one big monitor for optimal course experience.

• In this course we use the latest Visual Studio 2019, ASP.NET Core 3.x and IdentityServer4 version 4.x
• All course materials are written in English 
• The course can be taught in either Swedish or English
• Even though the course deals with the cloud and containers, it is not the focus of this course and no cloud/container experience is needed

Days

• This course can either be delivered over 3 full days or 6 half days

Things covered in this course

• Configuration
• HTTPS certificates
• Security
• Logging
• Duende IdentityServer v5.x
• Error handling
• Securing the client
• Data Protection API
• Public/Private key encryption
• Keys, Certificates and PKCS 12 files
• Creating JWT Token signing keys using OpenSSL
• Token Signing keys
• IdentityServer and the database
• User management
• Tokens and claims
• Securing the API
• Consuming the API
• Refresh tokens
• Extending IdentityServer
• Performance and service resiliency
• Troubleshooting IdentityServer

And much more...

Teacher: Tore Nestenius