Erwin van der Valk

Erwin van der Valk, a Principal Engineer at Duende Software, dives into the intricacies of securing browser-based frontends with ASP.NET Core backends. He shines a light on the Backend for Frontend (BFF) Security Framework, discussing Sam Newman's BFF Pattern to manage diverse clients. The conversation highlights the complexities of OAuth 2.0 in tackling backend security, and Erwin emphasizes the necessity of layered security measures, cookie management, and efficient workflows to protect user identity and enhance application safety.

Erwin van der Valk, Principal Engineer at Duende Software, dives into the complexities of securing browser-based frontends with ASP.NET Core backends. He discusses the Backend for Frontend (BFF) security framework, which streamlines API integration for diverse clients. The conversation highlights the importance of robust user authentication, handling OAuth 2.0 challenges, and managing tokens securely. Erwin also explores the nuances of Blazor rendering modes and the architectural advantages of multi-frontend support to boost development efficiency.

Join Erwin van der Valk, Principal Engineer at Duende Software and expert in web security, as he unravels the complexities of securing browser-based frontends using ASP.NET Core backends. He highlights the Backend for Frontend (BFF) pattern, addressing challenges with diverse clients and OAuth 2.0. The discussion dives into user role management, centralized authorization, and critical web application security strategies. Erwin emphasizes the importance of access token management and advanced authorization tactics to protect modern applications from vulnerabilities.