You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
# Push notifications for ASP.NET Core Blazor Progressive Web Applications (PWAs)
@@ -30,24 +30,15 @@ The example in this article uses push notifications to provide order status upda
30
30
31
31
Generate the cryptographic public and private keys for securing push notifications either locally, for example with PowerShell or IIS, or using an online tool.
32
32
33
-
> [!CAUTION]
34
-
> This article's use of a unencrypted, insecure private key in the app's code ***is for demonstration purposes and local testing only.*** We recommend using a secure approach for supplying a private key to an ASP.NET Core app at all stages of development. When working locally in the Development environment, a private key can be provided to the app using the [Secret Manager](xref:security/app-secrets#secret-manager) tool. In Development, Staging, and Production environments, [Azure Key Vault](/azure/key-vault/) with [Azure Managed Identities](/entra/identity/managed-identities-azure-resources/overview) can be used, noting in passing that to obtain a certificate's private key from a key vault that the certificate must have an exportable private key.
35
-
36
-
<!-- We'll expand this article to include explicit guidance on key management with AKV. A
37
-
Google search with 'get certificate private key from azure key vault for use in c# code'
38
-
generates a decent code sample. I didn't see such a good starting point in AKV Learn
39
-
articles, so we'll use the AI-generated code as a starting point.
40
-
41
-
The preceding CAUTION statement also appears in the 'Send a notification' section.
42
-
-->
43
-
44
33
Placeholders used in this article's example code:
45
34
46
35
*`{PUBLIC KEY}`: The public key.
47
36
*`{PRIVATE KEY}`: The private key.
48
37
49
38
For this article's C# examples, update the `[email protected]` email address to match the address used when creating the custom key pair.
Before sending push notifications to a user, the app must ask the user for permission. If they grant permission to receive notifications, their browser generates a *subscription*, which includes a set of tokens the app can use to route notifications to the user.
@@ -257,8 +248,7 @@ Sending a notification involves performing some complex cryptographic operations
257
248
258
249
The `SendNotificationAsync` method dispatches order notifications using the captured subscription. The following code makes uses of `WebPush` APIs for dispatching the notification. The payload of the notification is JSON serialized and includes a message and a URL. The message is displayed to the user, and the URL allows the user to reach the pizza order associated with the notification. Additional parameters can be serialized as required for other notification scenarios.
259
250
260
-
> [!CAUTION]
261
-
> This article's use of a unencrypted, insecure private key in the app's code ***is for demonstration purposes and local testing only.*** We recommend using a secure approach for supplying a private key to an ASP.NET Core app at all stages of development. When working locally in the Development environment, a private key can be provided to the app using the [Secret Manager](xref:security/app-secrets#secret-manager) tool. In Development, Staging, and Production environments, [Azure Key Vault](/azure/key-vault/) with [Azure Managed Identities](/entra/identity/managed-identities-azure-resources/overview) can be used, noting in passing that to obtain a certificate's private key from a key vault that the certificate must have an exportable private key.
0 commit comments