- ABP Framework version: v4.2 as well as v8.2
- UI Type: MVC
- Database System: EF Core (SQL Server)
- Tiered (for MVC) or Auth Server Separated (for Angular): yes
Hii Team,
I have production code with abp commercial for both 4.2 as well as 8.0 version as security purpose I want to implement Hmac validation for all of the request so that the tampering of data will be prohibited on my each request to identity server project. along with that do we have any default implementation for the same For eg . HMac validation as well as encryption decryption of request on client side as well as server side
1 Answer(s)
-
0
Hi, in .NET you can apply HMAC validation to all your API endpoints by implementing a custom middleware. This ensures that all incoming requests are validated for authenticity and integrity using a shared secret key, for example.
However, we don't provide such a middleware by default and you need to create it yourself. But, after you create your middleware, if you want you can use our own String Encryption system.
Regards.
