CF

Secure APIs with FastAPI and the Microsoft Identity Platform

1h 45m 17s
English
Paid

Azure Active Directory (Azure AD) is a comprehensive cloud-based Identity and Access Management service provided by Microsoft. With the rise of security threats, it's crucial to build secure solutions featuring robust authentication and authorization services to protect your data.

In this course, we will introduce basic identity principles and teach you how to use Azure AD to control who can access your Fast APIs and how they can do so, using open industry standards such as OAuth2 and OIDC.

Course Overview

Secure APIs with FastAPI and the Microsoft Identity Platform is designed for Python developers aiming to implement secure, JWT-based authentication and authorization by leveraging Azure AD—a scalable, secure, and flexible identity provider.

What You Will Learn

  • Understanding the fundamentals of identity management and its importance.
  • Integrating Azure AD with FastAPI for optimal API security.
  • Applying OAuth2 and OIDC standards for secure authentication.
  • Implementing JWT-based authentication without the need for complex coding.

Why Take This Course

If you are a Python developer or solution architect looking for a plug and play solution to secure your APIs, this course is tailored for you. You will gain insights into Azure AD and how to use it efficiently without requiring detailed knowledge of OAuth2 and OIDC mechanisms. Secure your applications with ease and confidence!

Additional

https://github.com/talkpython/fastapi-and-the-microsoft-identity-platform-course

About the Author: Talk Python Training

Talk Python Training thumbnail

Talk Python Training is the paid course platform of Michael Kennedy, the host of the long-running Talk Python To Me podcast — one of the most-listened-to podcasts in the Python ecosystem. The course platform extends Michael's interview-based knowledge of the field into structured video courses taught by Michael and a curated set of guest instructors.

The course catalog covers the full Python landscape: web development with Django, Flask, FastAPI, and the broader async-Python stack; data science and pandas; LLM / RAG application development; testing and CI/CD; deployment patterns; the data-engineering side of Python; and a long list of practical Python patterns aimed at working developers. Few platforms cover the language with this much breadth from inside the Python community itself.

The CourseFlix listing under this source carries over 18 Talk Python Training courses spanning that range. Material is paid; Talk Python Training runs on per-course pricing on the original platform. Courses are aimed at developers using Python as a serious primary language rather than as a scripting tool.

Watch Online 26 lessons

This is a demo lesson (10:00 remaining)

You can watch up to 10 minutes for free. Subscribe to unlock all 26 lessons in this course and access 10,000+ hours of premium content across all courses.

View Pricing
0:00
/
#1: Welcome
All Course Lessons (26)
#Lesson TitleDurationAccess
1
Welcome Demo
01:20
2
API security
01:02
3
Your instructor
01:02
4
More on FastAPI and Microsoft Identit
01:14
5
What is identity?
03:19
6
Username and password databases
03:19
7
Introduction to the OAuth2 protocol
03:36
8
Introduction to the OIDC protocol
03:19
9
Identity-as-a-service
03:19
10
Introduction to Azure Active Directory (Azure AD)
02:25
11
Provisioning an Azure AD tenant
04:59
12
Creating your first application registration
05:01
13
Securing FastAPI with Azure A
08:15
14
Application types
03:28
15
Demo: Building a console app that calls a secure FastAPI API
15:20
16
Demo: ASP.NET Core web app consuming a FastAPI API
13:09
17
Benefits of JWT authentication
04:35
18
The anatomy of JWTs and token validation
11:24
19
Secure authentication with self-signed certificates
06:23
20
Handling authentication and authorization errors
04:06
21
You've made it!
00:59
22
Review: Introduction to the Microsoft Identity Platform
00:59
23
Review: Securing FastAPI with Microsoft Identity
00:51
24
Review: Calling our secure FastAPI
00:51
25
Review: JWT-based authentication
00:33
26
Thanks and congrats
00:29
Unlock unlimited learning

Get instant access to all 25 lessons in this course, plus thousands of other premium courses. One subscription, unlimited knowledge.

Learn more about subscription

Related courses

Frequently asked questions

What are the prerequisites for enrolling in this course?
This course is designed for Python developers who have a basic understanding of FastAPI and API development. Familiarity with basic identity principles and web security concepts will be beneficial but is not required, as the course will cover these fundamentals as part of the curriculum.
What projects or applications will I build during the course?
During the course, you will engage in various demos, including building a console app that calls a secure FastAPI API and an ASP.NET Core web app consuming a FastAPI API. These projects will help you understand how to secure APIs using Azure Active Directory and FastAPI.
Who is the target audience for this course?
This course is tailored for Python developers and solution architects who are interested in securing their APIs with a focus on JWT-based authentication using Azure Active Directory. It is particularly beneficial for those looking for a straightforward, plug and play solution to enhance their API security.
How does this course compare in depth and scope to similar courses?
The course is focused specifically on integrating Azure Active Directory with FastAPI for API security. It covers the fundamentals of identity management, OAuth2, and OIDC, providing practical demonstrations. While it does not require detailed pre-existing knowledge of OAuth2 and OIDC mechanisms, it offers a solid understanding of these protocols as applied to API security.
What specific tools or platforms are covered in this course?
The course covers the use of Azure Active Directory as a cloud-based Identity and Access Management service, FastAPI as the framework for building APIs, and industry standards like OAuth2 and OIDC for secure authentication. It also delves into JWT-based authentication and token validation.
What aspects of API security are not covered in this course?
The course does not cover non-JWT methods of authentication, detailed network security practices beyond API security, or the deployment of FastAPI applications on platforms other than those demonstrated in the course. It focuses specifically on the integration of Azure AD for securing APIs.
What is the estimated time commitment to complete this course?
The course consists of 26 lessons. While the exact runtime is not specified, students should anticipate spending time on both the instructional content and practical exercises. The commitment will vary depending on the individual's familiarity with the topics, but students can expect to dedicate several hours to comprehensively engage with the course material.