Cloud Security

Steeltoe provides a number of security-related services that simplify using Cloud Foundry-based security services in ASP.NET applications.

These providers enable the use of Cloud Foundry security services (such as UAA Server and TAS Single-Sign-on) for authentication and authorization.

You can choose from the following providers when adding Cloud Foundry security integration:

• Single Sign-on with OAuth2 for ASP.NET Core
• Single Sign-on with OpenID Connect for ASP.NET Core
• Resource protection with JWT tokens for ASP.NET Core
• Resource protection using Mutual TLS in ASP.NET Core

In addition to authentication and authorization providers, Steeltoe security offers:

• A security provider for using Redis on Cloud Foundry with ASP.NET Core Data Protection Key Ring storage
• A CredHub API Client for .NET applications to perform credential storage, retrieval, and generation