In this video, we will create an administrative UI/portal for Windows and the Web to add role-based access control (RBAC) for the Web API Service created in the previous introduction video (https://youtu.be/T7y4gwc1n4w). Our administrative portal will use .NET 6, Entity Framework Core for data access, and DevExpress XAF as a UI and security layer. This dynamic role-based XAF UI and authorization layer allows developers and end-users to prohibit both CRUD and custom operations in our Web API Service visually, using rich WinForms, ASP.NET Core Blazor Server, or ASP.NET WebForms frontends.
XAF UI ships as part of the DevExpress Universal Subscription and includes dynamic security policies with access control permissions (linked to roles and users) that can be stored in more than a dozen popular data stores:
- Type permissions grant Read, Write, Create, and Delete access to all objects;
- Object Permissions work in conjunction with Type Permissions and grant access to object instances that fit a specified criterion;
- Member Permissions grant access to specific members unconditionally or based on a criterion.
⏱ Timeline ⏱
0:00 Introduction
1:26 XAF Solution Wizard
2:29 Explore project and register existing Web API Service business objects.
3:40 Run the Windows UI and use the standard authentication to login as Admin.
4:00 Create a User/Role that can Read the Post business objects Title, but not their contents.
4:46 Authenticate the newly created user in the Swagger UI of the Web API Service
5:15 Send HTTP GET request for the Post business object endpoint
5:39 Use the XAF Solution Wizard to add a Blazor Server project
6:40 Explore the new Blazor Server solution.
6:52 Configure the Azure authentication in the Blazor Startup.cs
7:16 Observe the required authentication attributes in settings.json
7:25 Create a new Azure application in the portal
8:25 Start the Blazor Server app from Visual Studio and login with OpenID
8:57 Observe the list of users
9:02 Blazor UI Deep Dive
9:18 Final: how to get all the amazing UI features from this demo.
⚡⚡⚡ Overview ⚡⚡⚡
https://www.devexpress.com/products/net/application_framework/security-web-api-service.xml
FAQ: https://www.devexpress.com/kb=t886740
📒 Documentation 📒
https://docs.devexpress.com/eXpressAppFramework/403394/backend-web-api-service
https://docs.devexpress.com/eXpressAppFramework/113366/
https://dxpr.es/XAF-TUTORIALS
⚡️ XAF's Community, Consulting & Training ⚡️
https://dxpr.es/XAF-COMMUNITY
https://dxpr.es/XAF-TRAINING
🚀 Get Started Today – Free 30 Day Trial 🚀
http://dxpr.es/NUGET
http://dxpr.es/FREE-TRIAL
✅ Pricing and Online Demos ✅
http://dxpr.es/BUY
http://dxpr.es/DEMOS
🆘 We Are Here to Help 🆘
http://dxpr.es/SUPPORT
👍 Follow DevExpress on Social Media 👍
http://dxpr.es/FACEBOOK
http://dxpr.es/TWITTER
http://dxpr.es/BLOGS
🏁 Review Customer Testimonials 🏁
http://dxpr.es/TESTIMONIALS
http://dxpr.es/MARKETPLACE
#DevExpress, #devexpress_xaf, #entityframework #devexpress_desktop, #devexpress_blazor #devexpress_web #aspnetcore #aspnet #webapi #blazor #rbac #api #efcore
0 Comments