Aspnetcore.docs: 2.0 Sweep all of aspnet/core/security for auth changes
This is the master issue. List each doc here:
- [x] update security/data-protection/compatibility/cookie-sharing #3776
- [x] update & rename 2fa with sms, /security/authentication/2fa
- [x] add new TOTP/Authenticator app doc
- [x] update core/security/authentication/social/index for new config
- [x] ~update & rename/retitle security/authentication/cookie~ nofix (see below)
- [x] add razor pages authorize doc #4444
- [x] update security/data-protection/configuration/index and sub pages for new config. Add instructions for redis and keyvault.
Rick-Anderson
All 11 comments
Also tagging @danroth27 and @HaoK
blowdart
on 19 Jul 2017
@01binary just checking, I think update core/security/authentication/social/index for new config is complete - right?
Rick-Anderson
on 28 Sep 2017
@Rick-Anderson core/security/authentication/social/index does not have code snippets, changes specific to 2.0 were minimal. Provider-specific topics were updated for RTM 2.0 in August - if there has been an API breaking release since then, they will need to be updated again (i.e. I assume Preview 2 API is older than RTM 2, with the latter being final).
01binary
on 3 Oct 2017
@Rick-Anderson For ...
rename/retitle security/authentication/cookie
https://docs.microsoft.com/aspnet/core/security/authentication/cookie
Title: Using Cookie Authentication without ASP.NET Core Identity
- What title would you like?
- Based on the prior conversation, do you want the ASP.NET 1.x bits removed in favor of the PDF (here and generally) leaving the entire topic in a for-2.0 state? That seems to be your last order before the conversation moved into other versioning subjects.
guardrex
on 6 Oct 2017
@guardrex No, change of plans. Keep the 1.x and 2.x tabs.
That title looks good to me. Can you think of a better title?
Rick-Anderson
on 7 Oct 2017
@Rick-Anderson "Keep the 1.x and 2.x tabs." :+1:
The title seems ok to me. By that point, they'll already have seen the topics pertaining to using cookie auth with Identity, so this calls out clearly that it's cookie auth without Identity. Yikes! on the lack of an introduction calling that out tho. It just launches right into config. (I'll fix that.)
guardrex
on 7 Oct 2017
@Rick-Anderson
I checked off the entry for the cookie sharing updates. There's just one left here:
update security/data-protection/configuration/index and sub pages for new config. Add instructions for redis and keyvault.
Should I look into this and see where it stands, or did u want to TAL?
guardrex
on 22 Jan 2018
What's TAL?
Rick-Anderson
on 22 Jan 2018
Look into it please.
Rick-Anderson
on 22 Jan 2018
Will do.
TAL = Take a look ... I must have picked that up somewhere around the repos.
guardrex
on 22 Jan 2018
@Rick-Anderson Let's ice this ... We're cool here. https://docs.microsoft.com/en-us/aspnet/core/security/data-protection/implementation/key-storage-providers#azure-and-redis
guardrex
on 23 Jan 2018
Related issues
StevenTCramer
路
3Comments
sonichanxiao
路
3Comments
Rick-Anderson
路
3Comments
royshouvik
路
3Comments
Raghumu
路
3Comments
Most helpful comment
@Rick-Anderson Let's ice this ... We're cool here. https://docs.microsoft.com/en-us/aspnet/core/security/data-protection/implementation/key-storage-providers#azure-and-redis