* Update Win Auth to V6 /3
* Update Win Auth to V6 /3
* Update Win Auth to V6 /3
* Update Win Auth to V6 /3
* work
* Update aspnetcore/security/authentication/windowsauth/6.0samples/WebRPwinAuth/Program.cs
Co-authored-by: Chris Ross <chrross@microsoft.com>
Co-authored-by: Chris Ross <chrross@microsoft.com>
* Mention using sudo -E to get admin permissions but still reference the current user environment
* Shell command to directly create the JSON file needed for Firefox
* Add some troubleshooting details for Linux, where to find the current user default certificate, and how to check it against the thumbprint of the exported certificate.
* Update aspnetcore/security/enforcing-ssl.md
Co-authored-by: Rick Anderson <3605364+Rick-Anderson@users.noreply.github.com>
* Update aspnetcore/security/enforcing-ssl.md
Co-authored-by: Rick Anderson <3605364+Rick-Anderson@users.noreply.github.com>
* Update aspnetcore/security/enforcing-ssl.md
Co-authored-by: Rick Anderson <3605364+Rick-Anderson@users.noreply.github.com>
* Update aspnetcore/security/enforcing-ssl.md
Co-authored-by: Rick Anderson <3605364+Rick-Anderson@users.noreply.github.com>
* Update aspnetcore/security/enforcing-ssl.md
Co-authored-by: Rick Anderson <3605364+Rick-Anderson@users.noreply.github.com>
* Apply suggestions from code review
Co-authored-by: Rick Anderson <3605364+Rick-Anderson@users.noreply.github.com>
Co-authored-by: Rick Anderson <3605364+Rick-Anderson@users.noreply.github.com>
* .NET 6 CORS /6
* .NET 6 CORS /6
* .NET 6 CORS /6
* .NET 6 CORS /6
* .NET 6 CORS /6
* .NET 6 CORS /6
* .NET 6 CORS /6
* .NET 6 CORS /6
* .NET 6 CORS /6
* .NET 6 CORS /6
* .NET 6 CORS /6
* Move the creation of the QR code to a js file.
In-line JavaScript is insecure and breaks script-src 'unsafe-inline' in Content Security Policy.
Note: I think the part about locating the Scripts section in EnableAuthenticator.cshtml should probably go after bit I've added about creating the js file (qr.js), and before updating the scripts section. I haven't moved it as I wasn't sure how the "moniker" directives worked and didn't want to break anything. (my first ever documentation proposal)
* Apply suggestions from code review
Co-authored-by: Rick Anderson <3605364+Rick-Anderson@users.noreply.github.com>
* Update overview.md
Add isolation clarification driven by a customer misunderstanding who had used key vault to isolate individual keys in the same vault, causing app crashes.
* Update aspnetcore/security/data-protection/configuration/overview.md
Co-authored-by: Hao Kung <HaoK@users.noreply.github.com>
* Apply Pitch fork guys suggestions (#23071)
* Update overview.md
* Update aspnetcore/security/data-protection/configuration/overview.md
* Update aspnetcore/security/data-protection/configuration/overview.md
* Update aspnetcore/security/data-protection/configuration/overview.md
* Update aspnetcore/security/data-protection/configuration/overview.md
Co-authored-by: Hao Kung <HaoK@users.noreply.github.com>
Co-authored-by: Rick Anderson <3605364+Rick-Anderson@users.noreply.github.com>
* Update mixed up words
`context.Success` and `context.Fail` are void functions
* Update aspnetcore/security/authorization/secure-data.md
* Update aspnetcore/security/authorization/secure-data.md
Co-authored-by: Rick Anderson <3605364+Rick-Anderson@users.noreply.github.com>
* Highlight the correct line of code
Highlight call to `AddRoles<IdentityRole>()` instead of `AddEntityFrameworkStores<ApplicationDbContext>()` in the **Add Role services to Identity** section
* Highlight the correct lines of code
Correctly highlight calls to `AddRoles<IdentityRole>()` in the **Add Role services to Identity** sections
Rick Anderson
Kirk Larkin
Luke Latham
Sly Gryphon
Cam Soper
Wade Pickett
Max Lefebvre
Dina Berry
marquisdan
Ted
GitHubPang
LaughingJohn
Kent Sharkey
Alif
Chris Ross
IgorP
Martin Costello
Barry Dorrans
Alexander Georgiadis
Ashot Muradian