Search This Blog

Friday, 7 September 2018

10 Points to Secure Your ASP.NET Core MVC Applications

In this article, we learn how to secure ASP.NET Core MVC Applications against top 10 attacks given by OWSAP (Open Web Application Security Project) in step by step way.

  1. Broken authentication and session management
  2. Sensitive Data Exposure & Audit trail
  3. Cross-Site Scripting (XSS) attacks
  4. Malicious File Upload
  5. Security Misconfiguration (Error Handling Must Setup Custom Error Page)
  6. Version Discloser
  7. Cross-Site Request Forgery (CSRF)
  8. XML External Entities (XXE)
  9. Insecure Deserialization
  10. SQL Injection Attack
We are new to the .NET Core Framework and we are using it for developing production applications, but when we develop a production application we must also think of security. So, in this article, we will run through 10 points which will help us to make our ASP.NET Core MVC code secure.





Saturday, 11 August 2018

Angular 6 tutorial for beginners

Angular 6 tutorial for beginners


Projects to Learn

Projects to Learn From Saineshwar Bageri



1.[ MVC 4 ]
2.[Angular 2]
3.[ASP.NET Core ]
4.[MVC 5 ]

MVC Demo Project [ MVC 4 ]

https://www.c-sharpcorner.com/UploadFile/4d9083/project-gymone-demo-project-in-mvc/

Angular Demo Application With ASP.NET Core MVC (Rent A Car)  [Angular 2]

https://www.c-sharpcorner.com/article/angular-demo-application-with-asp-net-core-mvc-rent-a-car/

ASP.NET Core MVC Project (Event Management)   [ASP.NET Core ]

https://www.c-sharpcorner.com/article/asp-net-core-mvc-project-event-management/

TimeSheet Project Using ASP.NET MVC 5 [MVC 5 ]

https://www.c-sharpcorner.com/article/timesheet-project-process-using-mvc-5/

Creating Simple API In Node.js

Creating Simple API In Node.js

In this article, we are going to learn how to create a simple API in node js and use MS SQL as a data source on which we are going to perform CRUD operations.



This article will be written so that both a beginner and a professional can easily understand it.

Before starting with creating API let’s understand basics.

What is Node js?

An Open source, Cross-platform, and runtime environment for executing javascript code outside the browser.
What can we build using it?

We can build Web apps and APIS using node js.
Why node.js if we already have other frameworks?

It is super-fast and highly scalable e.g. PayPal, Uber, Netflix
Build twice as fast with fewer people
33% fewer lines of code
40% fewer files
2x request/sec
35% faster response
The open source library has a large ecosystem.

Javascript is everywhere (front + back).

You can write an entire application using javascript, no need to learn a new language.

Prerequisites
  • Node js is installed [Download node js https://nodejs.org/en/ ]
  • Next, we are going to use Visual Studio Code IDE for Development [ https://code.visualstudio.com/download ]
  • SQL Server Database

Learn Elasticsearch in 2 Days

Elasticsearch Search Series of Articles 5 Article to Learn Elasticsearch in 2 Days 1. How To Configure Elasticsearch On Windows https://www.c-sharpcorner.com/article/how-to-configure-elastic-search-on-windows/ 2. Reading And Writing Documents With Single Document APIs In Elastic Search https://www.c-sharpcorner.com/article/reading-and-writing-documents-with-single-document-apis-in-elastic-search/ 3. How To Configure Kibana https://www.c-sharpcorner.com/article/how-to-configure-kibana/ 4. Inserting Document In Bulk Into Elastic Search Using Logstash https://www.c-sharpcorner.com/article/inserting-document-in-bulk-into-elastic-search-using-logstash/ 5. Using Elastic Search With ASP.NET MVC
https://www.c-sharpcorner.com/article/using-elastic-search-with-asp-net-mvc/

Thursday, 8 February 2018

Securing ASP.NET CORE Web API using Custom API Key based Authentication

In this article, we are going to learn how to create a secure Web API in ASP.NET Core MVC.


Link to Complete Article with source code:-  

In the fast-growing era of Web technology, everything is changing too fast. With ASP.NET there was a time when we used to use web service (the .asmx ones), which was SOAP-based, which we can just use for consuming data from other applications, which did have that much of security in it. Most developers would take Username and Password Parameter as input and then they would allow to access web service.
As time passes, Microsoft came up with WCF which was secured but too complex to use.
Further, Microsoft came up with something new called as Web API which we can use by creating ASP.NET MVC application or directly ASP.NET Web API application which was lighter and easy to use.
But moving further, Microsoft introduces ASP.NET Core which is lighter than all its previous versions.
But when we say we are securing and webapi in ASP.NET WEB API we use Delegate handler for validating API request.
As we jump into ASP.NET Core there are no more handler and modules, we are introduced to something new called as Middleware, which we are going to write to validating API request.
In this article, we are going to learn that extra part, the process to create an ASP.NET Core WEB API application in which a developer can log in to application and subscribe his own services, then generate API keys, see his own documentation of API how to consume API and finally he will get his own analytics on how many requests he sends in a month. And if request sent count is greater than the user has subscribed then he will get the response "exceeds request length".

Process

  • Register Developer
  • Login
  • Choose Service with Max request (1000 request, 5000 requests)
  • Get API key
  • API Documents
  • Use API key to Access service

Prerequisite

Visual Studio 2017 with ASP.NET CORE 2.0
SQL Server 2008 and above





Sunday, 2 July 2017

Creating Simple Cascading DropDownList In ASP.NET Core MVC With New Tag Helpers

Topic
  1. Database part
  2. Creating application
  3. Installing Package for Entity framework core From NuGet
  4. Adding Connection string and Setting up DbContext
  5. Adding Category, SubCategory, MainProduct Model in Models Folder
  6. Adding DbSet for Category, SubCategory, and MainProduct Model in DatabaseContext class
  7. Adding Controller [DemoController]
  8. Getting Data from Database using Entity framework core.
  9. Adding View [index.cshtml]
  10. Binding Category Dropdownlist using new Tag helper
  11. Adding SubCategory and Product Dropdownlist to index.cshtml View
  12. Adding SubCategory and GetProducts Action Method to Demo Controller
  13. Adding Jquery reference on View and Default items in drop-down list
  14. Binding SubCategory and Product drop-down list with jquery Ajax
  15. Adding Index Action method for handling post request and getting selected values
  16. Saving and Run Application
Read Entire Article on below link :- http://www.c-sharpcorner.com/article/creating-simple-cascading-dropdownlist-in-asp-net-core-mvc-with-new-tag-helpers/






10 Points to Secure Your ASP.NET Core MVC Applications

In this article, we learn how to secure ASP.NET Core MVC Applications against top 10 attacks given by OWSAP (Open Web Application Security ...