Using Cookies in ASP.NET Core apps

cookies

Using Cookies in ASP.NET Core apps

What are cookies

  • Cookies are small data files sent by websites that are stored in the browser
  • Cookies are sent every time a request is sent to the server
  • Cookies are useful for persisting user login, tracking user activity to create personalized experiences, etc.

cookies_arch

Demo

  • We will create a simple TODO list web app using ASP.NET Core
  • The server will save the todo list in the user’s browser using cookies
  • A server can set a cookie and send it in the response to the client’s browser
  • The browser will update the cookie
  • Each cookie has a unique key
  • In our demo application, the server sets a cookie to store todos in the client’s browser using Response.Cookies.Append
Response.Cookies.Append(nameof(Todo), JsonSerializer.Serialize(todos));
  • Client Browser sends cookies to the server in every request
  • The cookie data can be retrieved using Request.Cookies
  • In our demo application, the cookie containg the todos is accessed in the server using
Request.Cookies[nameof(Todo)]
  • A server cannot delete the client browser cookie
  • But the cookie can be markes as expired which in a way tells the browser to not use the cookie
  • A cookie can be deleted from the server using Response.Cookies.Delete
Location: Mumbai, Maharashtra, India

Comments

Post a Comment

Popular posts from this blog

ClaimsPrincipal, ClaimsIdentity, Claims explained in dotnet authentication

Image
claimsprincipal_dotnet Authentication means identifying a subject (user, external application etc) ASP.Net Core Identity is a framework that uses claims based authentication to authenticate users Key concepts in Claims-based authentication Claim Claim is a statement about the subject (user) being authenticated It is a key value pair (like username=John is a claim, email=john1543@gmail.com is a claim, userId=236 is a claim) A claim can have an issuer (for example: userId=236 as per system , date of birth=1st-Jan-2006 as per Gmail ; here system and Gmail are the issuers) ClaimsIdentity ClaimsIdentity is a collection of claims of the subject (user) For example, driving license of a subject (user) can be a ClaimsIdentity that has claims like name, photo, date of birth, address etc. Passport can be a ClaimsIdentity that has claims like name, place of birth, photo, nationality, permanent address etc ClaimsIdentity also has a string property called Authenti...
Read more

Cookie based authentication & authorization in ASP.NET Core explained

Image
cookie_auth Cookie based authentication can be implemented in ASP.NET Core using the built-in Authentication, Authorization services and Authentication, Authorization middlewares Services for Authentication and Authorization Authentication Service Maintains multiple authentication schemes Uses Cookie handler to Build ClaimsPrincipal from cookie, set up request redirection for login, logout, access denial Add cookie authentication service in DI container using the following // Add Cookie Authentication service builder . Services . AddAuthentication ( CookieAuthenticationDefaults . AuthenticationScheme ) . AddCookie ( options = > { options . LoginPath = "/Account/Login" ; // Specify the path to the login page options . AccessDeniedPath = "/Account/AccessDenied" ; // Specify the path for access denied options . ExpireTimeSpan = TimeSpan . FromMinutes ( 60 ) ; // Set the cookie expiration time...
Read more

Implicit usings, top level statements, file scoped namespaces in dotnet

implicit usings Implicit usings = no repeated using statement in all files With implicit usings feature in a C# project, common using statements are automatically added by the compiler in all the C# files. For example using System; statement is not required to run the dotnet console application as shown below Console . WriteLine ( "Hello World!" ) ; Additional implicit usings can be declared in a C# project with global usings statements in any one of the project’s C# files as shown below. global using Ardalis . GuardClauses ; global using MediatR ; global using Project2 . Utils ; Existing implicit usings can be removed or included in the .csproj file of the C# project as shown below < ItemGroup > < Using Remove = " System.Threading.Tasks " /> < Using Include = " System.Math " /> </ ItemGroup > The implicit usings added in a C# project is based on the project type as sh...
Read more