Provides authentication and authorization for media items.
In Umbraco 14, backoffice authentication transitioned from cookie-based to bearer token authentication, impacting how users authenticate outside the backoffice. The legacy UMB_UCONTEXT cookie now only facilitates OpenID Connect sign-ins and may not be permanent. Kenn Jacobsen proposes a new cookie-based authentication mechanism using OpenIddict events to manage user sessions effectively.
In today's interconnected digital landscape, leveraging Umbraco CMS as a centralized Identity Provider (IDP) enhances security and simplifies user management. By integrating Duende IdentityServer, Umbraco enables seamless Single Sign-On (SSO) and customizable authentication flows, providing scalability and robust security for growing application ecosystems.
Jacob Overgaard discusses generating a TypeScript client for Umbraco 14 and 15, emphasizing the use of the @hey-api/openapi-ts library for API requests. He outlines how to authenticate using a bearer token, set up an entry point for API configuration, and manage authorization headers for requests.