Hi, To integrate Auth0 with a Blazor Webassembly project, I followed a tutorial, provided by Auth0. It is a clear and good topic but I have some feedback on it. In Blazor it is not possible to keep settings secret in an appsettings.json file. The file is accessible from the browser just by typing a…

Hello @r.alblas , Thanks for appreciating my tutorial and for your feedback about security. I have a few observations about your concerns. The tutorial doesn’t use any client secret. A Blazor WASM app is a SPA and technically it’s called a public client. You should never use a client secret in a p…

Unsecure settings in blazor while following tutrial

Product Feedback

dan.woda June 22, 2023, 12:45pm 5

Thanks for the response @andrea.chiarelli!

2 Likes

June 2023 Community News

Topic		Replies	Views
Documnetation/tutorial for Securing a .Net 6.0 Minimal API from a Blazor Wasm client Product Feedback webapi , blazor	2	2928	June 5, 2022
Setting up Auth0 between Blazor WASM with ASPNET Core Get Help jwt , refresh-tokens , access-token , webapi-authorization , wasm	1	4734	December 2, 2021
Securing API in Blazor WASM App Get Help token , auth0 , api , audience-is-invalid , blazor	2	4522	December 17, 2020
Is it okay to have auth0 client information accessible over a public API? Get Help auth0 , client , public	5	7072	March 2, 2018
Safe management of Auth0 information in source control Get Help api , spa	4	5229	August 28, 2019

Unsecure settings in blazor while following tutrial

Related topics