Book Image

Modern Web Development with ASP.NET Core 3 - Second Edition

By : Ricardo Peres
Book Image

Modern Web Development with ASP.NET Core 3 - Second Edition

By: Ricardo Peres

Overview of this book

ASP.NET has been the preferred choice of web developers for a long time. With ASP.NET Core 3, Microsoft has made internal changes to the framework along with introducing new additions that will change the way you approach web development. This second edition has been thoroughly updated to help you make the most of the latest features in the framework, right from gRPC and conventions to Blazor, which has a new chapter dedicated to it. You’ll begin with an overview of the essential topics, exploring the Model-View-Controller (MVC) pattern, various platforms, dependencies, and frameworks. Next, you’ll learn how to set up and configure the MVC environment, before delving into advanced routing options. As you advance, you’ll get to grips with controllers and actions to process requests, and later understand how to create HTML inputs for models. Moving on, you'll discover the essential aspects of syntax and processes when working with Razor. You'll also get up to speed with client-side development and explore the testing, logging, scalability, and security aspects of ASP.NET Core. Finally, you'll learn how to deploy ASP.NET Core to several environments, such as Azure, Amazon Web Services (AWS), and Docker. By the end of the book, you’ll be well versed in development in ASP.NET Core and will have a deep understanding of how to interact with the framework and work cross-platform.

Related Content you might be interested in

Current Title:

Small book image
Modern Web Development with ASP.NET Core 3 - Second Edition
Ricardo Peres
Jun, 2020 | 802 pages
Small book image
Customizing ASP.NET Core 6.0
Jrgen Gutsch
Dec, 2021 | 204 pages
Small book image
Customizing ASP.NET Core 5.0
Jrgen Gutsch
Jan, 2021 | 160 pages
Small book image
Mastering Minimal APIs in ASP.NET Core
Emanuele Bartolesi | Andrea Tosato | Marco Minerva
Oct, 2022 | 240 pages
Table of Contents (26 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
1
Section 1: The Fundamentals of ASP.NET Core 3
Section 1: The Fundamentals of ASP.NET Core 3
Free Chapter
2
Getting Started with ASP.NET Core
Getting Started with ASP.NET Core
Technical requirements
Getting started
Beginning with .NET Core
Dependencies and frameworks
Understanding the generic host
Understanding the MVC pattern
Getting your context
Understanding the OWIN pipeline
Hosting ASP.NET Core
Inversion of control and dependency injection
Knowing the environments
Understanding the project templates
What's new since version 2.0?
The NuGet and dotnet tools
Summary
Questions
3
Configuration
Configuration
Technical requirements
Getting started
Configurations in .NET Core
Providers
Using configuration values
Changes from version 2.x
Configuring the runtime host
Understanding feature toggling
Summary
Questions
4
Routing
Routing
Technical requirements
Getting started
Endpoint routing
Route configuration
Creating routing tables
Using route templates
Matching route parameters
Using dynamic routing
Selecting routes from attributes
Host selection from attributes
Setting route defaults
Routing to inline handlers
Applying route constraints
Route data tokens
Routing to areas
Using routing attributes
Error handling in routing
Summary
Questions
5
Controllers and Actions
Controllers and Actions
Technical requirements
Getting started
Using controllers
Finding controllers
Controller life cycle
Actions
Error handling
Response caching
Maintaining the state
Dependency injection
Globalization and localization
Summary
Questions
6
Views
Views
Technical requirements
Getting started
Understanding views
Understanding the view life cycle
Locating views
Using view engines
Logging and diagnostics
View compilation
Passing data to views
Understanding view layouts
Understanding partial views
Understanding the special view files
Understanding the view options
Using areas
Dependency injection
Using translations
Summary
Questions
7
Section 2: Improving Productivity
Section 2: Improving Productivity
8
Using Forms and Models
Using Forms and Models
Technical requirements
Getting started
Using the form context
Working with the model
Using HTML helpers
Using templates
Enforcing model binding
Model validation
Using AJAX for validation
Uploading files
Summary
Questions
9
Implementing Razor Pages
Implementing Razor Pages
Technical requirements
Getting started
Assets search order
Working with the page model
Summary
Questions
10
API Controllers
API Controllers
Technical requirements
Getting started with web APIs
Understanding REST
Model binding
Authorizing access to resources
Applying OpenAPI REST conventions
Returning validation results
Performing content negotiation
Handling errors
Understanding API versioning
Generating API documentation
Serving OData
Summary
Questions
11
Reusable Components
Reusable Components
Technical requirements
Diving into the view components
Exploring the tag helpers
Tag helper components
Partial views
Understanding Razor class libraries
Summary
Questions
12
Understanding Filters
Understanding Filters
Technical requirements
Filters in the pipeline
Understanding the filter types
Applying authorization filters
Resource filters
Understanding action filters
Result filters
Exception filters
Razor page filters
Always-run-result filters
Summary
Questions
13
Security
Security
Technical requirements
Authenticating users
Authorizing requests
Checking requests for forgery
Applying HTML encoding
Working with HTTPS
Understanding CORS
Using data protection
Protecting static files
Learning about the GDPR
Binding security
Summary
Questions
14
Section 3: Advanced Topics
Section 3: Advanced Topics
15
Logging, Tracing, and Diagnostics
Logging, Tracing, and Diagnostics
Technical requirements
Introducing the .NET Core Common Logging framework
Writing custom logging middleware
Using tracing and diagnostics
Using performance (event) counters for obtaining metrics
Using telemetry
Performing health checking
Summary
Questions
16
Understanding How Testing Works
Understanding How Testing Works
Technical requirements
Getting started with unit tests
Writing unit tests
Working on integration tests
Summary
Questions
17
Client-Side Development
Client-Side Development
Technical requirements
Introducing client-side development
Using LibMan
Using Node.js
Using TypeScript
Summary
Questions
18
Improving Performance and Scalability
Improving Performance and Scalability
Technical requirements
Getting started
Hosting ASP.NET Core
Understanding bundling and minification
Using asynchronous actions
Improving performance with caching
Compressing responses
Buffering responses
Summary
Questions
19
Real-Time Communication
Real-Time Communication
Technical requirements
Setting up SignalR
Hosting a hub
Choosing communication protocols
Message serialization
Exploring the SignalR context
Knowing the message targets
Communicating from the outside
Using user authentication
Logging
Summary
Questions
20
Introducing Blazor
Introducing Blazor
Technical requirements
Getting started with Blazor
Implementing Blazor
Pages
Page layouts
Routing
Building components
Working with forms
Working with DOM elements
DI
JavaScript interoperability
Maintaining state
Making HTTP calls
Applying security
Unit testing
Summary
Questions
21
gRPC and Other Topics
gRPC and Other Topics
Technical requirements
Using areas for organizing code
Working with static files and folders
Application lifetime events
Working with embedded resources
Hosting extensions
Hosting background services
ASP.NET Core model conventions
Applying URL rewriting
Using EF Core
Understanding the gRPC framework
Using HTTP client factories
Summary
Questions
22
Application Deployment
Application Deployment
Technical requirements
Deploying the application manually
Deploying with Visual Studio
Deploying through IIS
Deploying with NGINX
Deploying to Azure
Deploying to AWS
Deploying with Docker
Deploying as a Windows service
Summary
Questions
23
Assessments
Chapter 1
Chapter 2
Chapter 3
Chapter 4
Chapter 5
Chapter 6
Chapter 7
Chapter 8
Chapter 9
Chapter 10
Chapter 11
Chapter 12
Chapter 13
Chapter 14
Chapter 15
Chapter 16
Chapter 17
Chapter 18
Chapter 19
24
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think
Appendix A: The dotnet Tool
The dotnet Tool

Checking requests for forgery

CSRF (or XSRF) attacks are one of the most common hacks by which a user is tricked into performing some action in one of the sites to which they are logged in. For example, imagine you have just visited your e-banking site and then you go to a malicious site, without having logged out; some JavaScript on the malicious site could have the browser post to the e-banking site an instruction to transfer some amount of money to another account. Realizing that this is a serious problem, Microsoft has long supported an anti-forgery package, Microsoft.AspNetCore.Antiforgery, which implements a mixture of the Double Submit Cookie and Encrypted Token pattern described in the Open Web Application Security Project (OWASP) cheat sheet: https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF)_Prevention_Cheat_Sheet#CSRF_Specific_Defense

OWASP aims to provide a not-for-profit repository of best practices related to security on the web. It lists common...

Previous Section
End of Section 5
Next Section