HTML5 Features HTML 5 provides several different features that enhance the end user experience in the browser, and fortunately ASP dot net 4 dot 5 offers several features as well that relate to HTML 5 and make it easier to work with as a developer. And that's what we're going to talk about in this module. The first thing we'll talk about is the text box control. It's text mode property has been enhanced to support HTML 5 input types such as email, url, color, and others, and we'll talk about those. From there we'll talk about how users can now upload multiple files from a browser up to the server if the browser supports it, a really nice feature that actually simplifies that overall process. Next up is WebSockets, one of the more exciting HTML 5 technologies out there and a technology that actually will allow you to provide real time communication between a browser and a server. In fact, I could use this technology to actually push data from a server as data changes there out to multiple clients. And finally we'll cover additional HTML 5 features that make life easier as a developer such as simplified paths with video and audio tags, validater controls, and integration with the HTML 5 input types and a few other things along the way.
oAuth and Security Features Dan Wahlin: Security is an important part of any application, and ASP. NET has always provided excellent support for securing applications in different scenarios. In ASP. NET 4. 5 we now have some new and enhanced support for security in different areas. For instance, we now have oAuth support so you can rely on third-party providers, and as users are posting back data or you might be encoding data we have some better options there, as well. We'll start off by talking about the oAuth support that's built into ASP. NET 4. 5 and how we can use third-party sites, such as Facebook, Twitter, Google, Microsoft and others, to actually authenticate our website users. For now, we'll talk about a different way to access data that's been posted back, especially in scenarios where HTML content might be entered in a textbox, and this is called deferred request validation or you might here it referred to as lazy validation. If you need to access HTML content, that's posted back, for instance in an HTML editor embedded in the browser. There's also a new feature on the request object, and we'll talk about handling unvalidated requests and getting the raw content that's been posted back. And we'll also talk about how if you need to actually take HTML content and put it back in the page, how you can encode it using the new AntiXssEncoder. This is a special Encoder that has white listed characters, anything outside of that list is automatically encoded, so that we prevent cross site scripting attacks. And then, finally, we'll wrap up with a new anti cross site request forgery validation feature, this makes it so external sites can't actually send users over to your site without them knowing it and perform different actions. So let's go ahead and jump in and get started with oAuth support.