The ASP.NET Core team is improving authentication, authorization, and identity management (collectively referred to as “auth”) in .NET 8. New APIs will make it easier to customize the user login and identity management experience. New endpoints will enable token-based authentication and authorization in Single Page Applications (SPA) with no external dependencies. Developers who enable auth in their ASP.NET Core applications are faced with multiple choices, including the built-in ASP.NET Core Identity solution, Azure Active directory, and third-party solutions. However, using ASP.NET Core Identity in SPA apps has limitations, and we’re working on a solution to support more scenarios out-of-the-box with no external dependencies.
