Syllabus

ASP.NET Core Complete Tutorial (ShopNest)

Module 1: Foundations
What is ASP.NET Core? Complete Guide Setting Up ASP.NET Core Development Environment ASP.NET Core Project Structure Explained MVC Architecture in ASP.NET Core — Complete Guide Controllers and Actions in ASP.NET Core Routing in ASP.NET Core — Conventional and Attribute Routing Views and Razor Syntax in ASP.NET Core Layouts, Partial Views and View Components Models and ViewModels in ASP.NET Core Forms, Model Binding and Validation in ASP.NET Core Tag Helpers in ASP.NET Core — Complete Guide Static Files, Bundling and Minification in ASP.NET Core
Module 2: Entity Framework Core
Entity Framework Core — Introduction and Setup EF Core Code First — Models, Migrations, Database EF Core CRUD Operations — Create, Read, Update, Delete EF Core LINQ Queries — Beginner to Advanced EF Core Relationships — One-to-One, One-to-Many, Many-to-Many EF Core Fluent API — Advanced Configuration EF Core Repository Pattern and Unit of Work EF Core Performance Optimization Database First Approach with EF Core (Scaffold) EF Core with SQL Server — Advanced Features
Module 3: Dependency Injection & Middleware
Dependency Injection in ASP.NET Core — Complete Guide Middleware in ASP.NET Core — Complete Guide Configuration in ASP.NET Core — appsettings, Environment Variables, Secrets Filters in ASP.NET Core — Action, Authorization, Exception, Resource, Result Logging in ASP.NET Core — ILogger, Serilog, NLog Error Handling and Exception Management in ASP.NET Core
Module 4: Authentication & Security
ASP.NET Core Identity — Complete Setup Guide Authentication in ASP.NET Core — Cookie and JWT Authorization in ASP.NET Core — Roles, Policies, Claims JWT Authentication with Refresh Tokens — Complete Implementation OAuth2 and External Login (Google, Facebook, Microsoft) Data Protection and Encryption in ASP.NET Core HTTPS, SSL Certificates and Security Best Practices
Module 5: Web API
Building REST APIs with ASP.NET Core — Complete Guide API Versioning in ASP.NET Core Swagger / OpenAPI Documentation in ASP.NET Core Input Validation in Web APIs — FluentValidation and Data Annotations Pagination, Filtering and Sorting in ASP.NET Core APIs HTTP Client and Consuming External APIs in ASP.NET Core Minimal APIs in ASP.NET Core .NET 8 SignalR — Real-Time Web Applications
Module 6: Advanced Architecture
Clean Architecture in ASP.NET Core CQRS Pattern with MediatR in ASP.NET Core Repository Pattern — Deep Dive with Generic Repository Background Services and Hosted Services in ASP.NET Core Caching in ASP.NET Core — In-Memory, Distributed, Redis Health Checks in ASP.NET Core AutoMapper in ASP.NET Core Microservices with ASP.NET Core — Introduction Message Queues with RabbitMQ / Azure Service Bus in ASP.NET Core gRPC with ASP.NET Core
Module 7: Testing
Unit Testing ASP.NET Core with xUnit and Moq Integration Testing in ASP.NET Core Testing EF Core — In-Memory vs SQLite Performance Testing and Load Testing ASP.NET Core APIs Test-Driven Development (TDD) in ASP.NET Core
Module 8: Deployment & DevOps
Deploying ASP.NET Core to IIS on Windows Server Docker and Containerization for ASP.NET Core Deploying ASP.NET Core to Azure App Service CI/CD with GitHub Actions for ASP.NET Core Azure SQL Database with ASP.NET Core Environment Configuration and Secrets Management
Module 9: Real-World Projects
Build a Complete Blog Website with ASP.NET Core MVC Build an E-Commerce Product Catalog API (ASP.NET Core Web API) Build a Student Management System (Complete CRUD App) Build a Job Portal (Full Stack ASP.NET Core) Build a REST API with Clean Architecture — Complete Guide Build a Real-Time Chat App with SignalR and ASP.NET Core
Module 10: Advanced Topics
Blazor WebAssembly and Blazor Server — Complete Guide gRPC, GraphQL and Alternative API Styles in ASP.NET Core Rate Limiting and API Throttling in ASP.NET Core .NET 8 Output Caching in ASP.NET Core .NET 8 ASP.NET Core .NET 9 New Features — Complete Guide
ASP.NET Core Complete Tutorial (ShopNest)
Lesson 29 of 75 39% of course

ASP.NET Core Identity — Complete Setup Guide

1 · 5 min · 5/24/2026

Learn ASP.NET Core Identity — Complete Setup Guide in our free ASP.NET Core Complete Tutorial (ShopNest) series. Step-by-step explanations, examples, and interview tips on Toolliyo Academy.

Sign in to track progress and bookmarks.

ASP.NET Core Identity — Complete Setup Guide — ShopNest
Article 29 of 75 · Module 4: Authentication & Security · ShopNest Multi-Role Web Application
Target keyword: asp.net core identity tutorial · Read time: ~32 min · .NET: 8 / 9 · Project: ShopNest Multi-Role Web Application

Introduction

ASP.NET Core Identity is the membership system for ShopNest — users, passwords, roles, lockout, and email confirmation out of the box. It replaces rolling your own auth tables and integrates with EF Core and cookie/JWT schemes.

After this article you will

  • Install Identity packages and extend ApplicationUser
  • Use UserManager and SignInManager
  • Scaffold register/login/logout pages
  • Configure password policies and lockout
  • Add custom registration fields and email confirmation

Prerequisites

Concept deep-dive

// Packages: Microsoft.AspNetCore.Identity.EntityFrameworkCore

public class ApplicationUser : IdentityUser
{
    public string FullName { get; set; } = "";
    public DateTime RegisteredAt { get; set; } = DateTime.UtcNow;
}

builder.Services.AddIdentity<ApplicationUser, IdentityRole>(options =>
{
    options.Password.RequiredLength = 8;
    options.Password.RequireDigit = true;
    options.Lockout.MaxFailedAccessAttempts = 5;
    options.Lockout.DefaultLockoutTimeSpan = TimeSpan.FromMinutes(15);
    options.User.RequireUniqueEmail = true;
})
.AddEntityFrameworkStores<ShopNestDbContext>()
.AddDefaultTokenProviders();

builder.Services.ConfigureApplicationCookie(options =>
{
    options.LoginPath = "/Account/Login";
    options.AccessDeniedPath = "/Account/AccessDenied";
    options.SlidingExpiration = true;
    options.ExpireTimeSpan = TimeSpan.FromHours(8);
});

app.UseAuthentication();
app.UseAuthorization();

UserManager — CreateAsync, FindByEmailAsync, AddToRoleAsync, GenerateEmailConfirmationTokenAsync.
SignInManager — PasswordSignInAsync, SignOutAsync, CheckPasswordSignInAsync.

Scaffold Identity UI: dotnet aspnet-codegenerator identity -dc ShopNestDbContext

Hands-on — ShopNest Multi-Role Web Application

  1. Extend ApplicationUser with FullName; migration.
  2. Seed roles: Admin, Customer, Vendor.
  3. Register page with custom field; assign Customer role on signup.
  4. Email confirmation stub (log token in Development).
  5. Login/logout with [Authorize] on /Account/Orders.
var result = await _userManager.CreateAsync(user, model.Password);
if (result.Succeeded)
{
    await _userManager.AddToRoleAsync(user, "Customer");
    await _signInManager.SignInAsync(user, isPersistent: false);
    return RedirectToAction("Index", "Home");
}
foreach (var err in result.Errors) ModelState.AddModelError("", err.Description);

Common errors & best practices

  • UseAuthentication after UseRouting but before UseAuthorization — wrong order breaks login.
  • Storing passwords in plain text — Identity hashes with PBKDF2 automatically.
  • Missing AddDefaultTokenProviders — password reset tokens fail.

Interview questions

Q: Identity vs custom auth?
A: Identity gives users, roles, lockout, 2FA hooks — don't rebuild unless special requirements.

Q: UserManager vs SignInManager?
A: UserManager manages user records; SignInManager creates auth cookies/sessions.

Q: Lockout purpose?
A: Brute-force protection — lock account after N failed attempts.

Summary

  • Identity + EF Core stores users and roles in SQL Server
  • UserManager/SignInManager drive register/login flows
  • Password and lockout policies configured in Program.cs
  • Multi-role ShopNest app starts here

Previous: Error Handling and Exception Management
Next: Authentication — Cookie and JWT

FAQ

Can Identity work with JWT?

Yes — combine Identity user store with JWT bearer for APIs (Articles 30–32).

Customize Identity UI?

Scaffold into Areas/Identity and edit Razor pages.

Interview Q&A for this course

Test your knowledge

Quizzes linked to this course—pass to earn certificates.

SOLID Design Principles — Practice Quiz
Test your understanding of SOLID Design Principles Tutorial. Single responsibility, open/c…
Intermediate 15 min
SignalR Real-Time — Practice Quiz
Test your understanding of SignalR Real-Time Tutorial. WebSockets, hubs, and live updates …
Intermediate 15 min
Microservices with .NET — Practice Quiz
Test your understanding of Microservices with .NET. Distributed systems, APIs, messaging, …
Intermediate 15 min
LINQ — Practice Quiz
Test your understanding of LINQ Tutorial. Query in-memory and database data with fluent LI…
Intermediate 15 min
Entity Framework Core — Practice Quiz
Test your understanding of Entity Framework Core Tutorial. Modern ORM: Code First, migrati…
Intermediate 15 min
Design Patterns in C# — Practice Quiz
Test your understanding of Design Patterns in C#. Creational, structural, and behavioral p…
Intermediate 15 min
Browse all quizzes
Previous Next
ASP.NET Core Complete Tutorial (ShopNest)

On this page

Introduction After this article you will Prerequisites Concept deep-dive Hands-on — ShopNest Multi-Role Web Application Common errors &amp; best practices Interview questions Summary FAQ Can Identity work with JWT? Customize Identity UI?
Module 1: Foundations
What is ASP.NET Core? Complete Guide Setting Up ASP.NET Core Development Environment ASP.NET Core Project Structure Explained MVC Architecture in ASP.NET Core — Complete Guide Controllers and Actions in ASP.NET Core Routing in ASP.NET Core — Conventional and Attribute Routing Views and Razor Syntax in ASP.NET Core Layouts, Partial Views and View Components Models and ViewModels in ASP.NET Core Forms, Model Binding and Validation in ASP.NET Core Tag Helpers in ASP.NET Core — Complete Guide Static Files, Bundling and Minification in ASP.NET Core
Module 2: Entity Framework Core
Entity Framework Core — Introduction and Setup EF Core Code First — Models, Migrations, Database EF Core CRUD Operations — Create, Read, Update, Delete EF Core LINQ Queries — Beginner to Advanced EF Core Relationships — One-to-One, One-to-Many, Many-to-Many EF Core Fluent API — Advanced Configuration EF Core Repository Pattern and Unit of Work EF Core Performance Optimization Database First Approach with EF Core (Scaffold) EF Core with SQL Server — Advanced Features
Module 3: Dependency Injection & Middleware
Dependency Injection in ASP.NET Core — Complete Guide Middleware in ASP.NET Core — Complete Guide Configuration in ASP.NET Core — appsettings, Environment Variables, Secrets Filters in ASP.NET Core — Action, Authorization, Exception, Resource, Result Logging in ASP.NET Core — ILogger, Serilog, NLog Error Handling and Exception Management in ASP.NET Core
Module 4: Authentication & Security
ASP.NET Core Identity — Complete Setup Guide Authentication in ASP.NET Core — Cookie and JWT Authorization in ASP.NET Core — Roles, Policies, Claims JWT Authentication with Refresh Tokens — Complete Implementation OAuth2 and External Login (Google, Facebook, Microsoft) Data Protection and Encryption in ASP.NET Core HTTPS, SSL Certificates and Security Best Practices
Module 5: Web API
Building REST APIs with ASP.NET Core — Complete Guide API Versioning in ASP.NET Core Swagger / OpenAPI Documentation in ASP.NET Core Input Validation in Web APIs — FluentValidation and Data Annotations Pagination, Filtering and Sorting in ASP.NET Core APIs HTTP Client and Consuming External APIs in ASP.NET Core Minimal APIs in ASP.NET Core .NET 8 SignalR — Real-Time Web Applications
Module 6: Advanced Architecture
Clean Architecture in ASP.NET Core CQRS Pattern with MediatR in ASP.NET Core Repository Pattern — Deep Dive with Generic Repository Background Services and Hosted Services in ASP.NET Core Caching in ASP.NET Core — In-Memory, Distributed, Redis Health Checks in ASP.NET Core AutoMapper in ASP.NET Core Microservices with ASP.NET Core — Introduction Message Queues with RabbitMQ / Azure Service Bus in ASP.NET Core gRPC with ASP.NET Core
Module 7: Testing
Unit Testing ASP.NET Core with xUnit and Moq Integration Testing in ASP.NET Core Testing EF Core — In-Memory vs SQLite Performance Testing and Load Testing ASP.NET Core APIs Test-Driven Development (TDD) in ASP.NET Core
Module 8: Deployment & DevOps
Deploying ASP.NET Core to IIS on Windows Server Docker and Containerization for ASP.NET Core Deploying ASP.NET Core to Azure App Service CI/CD with GitHub Actions for ASP.NET Core Azure SQL Database with ASP.NET Core Environment Configuration and Secrets Management
Module 9: Real-World Projects
Build a Complete Blog Website with ASP.NET Core MVC Build an E-Commerce Product Catalog API (ASP.NET Core Web API) Build a Student Management System (Complete CRUD App) Build a Job Portal (Full Stack ASP.NET Core) Build a REST API with Clean Architecture — Complete Guide Build a Real-Time Chat App with SignalR and ASP.NET Core
Module 10: Advanced Topics
Blazor WebAssembly and Blazor Server — Complete Guide gRPC, GraphQL and Alternative API Styles in ASP.NET Core Rate Limiting and API Throttling in ASP.NET Core .NET 8 Output Caching in ASP.NET Core .NET 8 ASP.NET Core .NET 9 New Features — Complete Guide