Wesley Cabus
@gotsharp.be
Customer Success Engineer at Duende Software, Microsoft MVP, VISUG board member. Loves coding, mostly in C#, tries to improve projects’ security wherever he goes.
Piano playing, public speaking, beer brewing and gaming nerd. ❤️ coffee
Piano playing, public speaking, beer brewing and gaming nerd. ❤️ coffee
Reposted by Wesley Cabus
In this video, Christian Wenz dives deep into Cross-Site Request Forgery (CSRF), a simple yet devastating attack that has plagued web applications for years.
Learn what CSRF is, how it works, and how to defend against it in #aspnetcore
youtu.be/WUJrKw05YfI
#dotnet
Learn what CSRF is, how it works, and how to defend against it in #aspnetcore
youtu.be/WUJrKw05YfI
#dotnet
Prevent Cross-Site Request Forgery
Welcome to the Duende Software web security video series! In this video, Christian Wenz dives deep into Cross-Site Request Forgery (CSRF), a simple yet devastating attack that has plagued web…
youtu.be
November 12, 2025 at 7:30 AM
In this video, Christian Wenz dives deep into Cross-Site Request Forgery (CSRF), a simple yet devastating attack that has plagued web applications for years.
Learn what CSRF is, how it works, and how to defend against it in #aspnetcore
youtu.be/WUJrKw05YfI
#dotnet
Learn what CSRF is, how it works, and how to defend against it in #aspnetcore
youtu.be/WUJrKw05YfI
#dotnet
Reposted by Wesley Cabus
🎤 Meet one of our VISUG XL 2025 speakers: 𝐒𝐡𝐚𝐮𝐧 𝐋𝐚𝐰𝐫𝐞𝐧𝐜𝐞!
We’re excited to welcome 𝐒𝐡𝐚𝐮𝐧 this year at Visug XL, our yearly, free, community-driven .NET conference.
📅 November 28, 2025
📍 UCLL Leuven
👉 More information and tickets: www.visug.be/Events/102
#VisugXL #DotNet #Community #Conference
We’re excited to welcome 𝐒𝐡𝐚𝐮𝐧 this year at Visug XL, our yearly, free, community-driven .NET conference.
📅 November 28, 2025
📍 UCLL Leuven
👉 More information and tickets: www.visug.be/Events/102
#VisugXL #DotNet #Community #Conference
November 10, 2025 at 8:30 AM
🎤 Meet one of our VISUG XL 2025 speakers: 𝐒𝐡𝐚𝐮𝐧 𝐋𝐚𝐰𝐫𝐞𝐧𝐜𝐞!
We’re excited to welcome 𝐒𝐡𝐚𝐮𝐧 this year at Visug XL, our yearly, free, community-driven .NET conference.
📅 November 28, 2025
📍 UCLL Leuven
👉 More information and tickets: www.visug.be/Events/102
#VisugXL #DotNet #Community #Conference
We’re excited to welcome 𝐒𝐡𝐚𝐮𝐧 this year at Visug XL, our yearly, free, community-driven .NET conference.
📅 November 28, 2025
📍 UCLL Leuven
👉 More information and tickets: www.visug.be/Events/102
#VisugXL #DotNet #Community #Conference
Reposted by Wesley Cabus
Claims and scopes describe user information in OpenID Connect.
Let's see how Duende IdentityServer handles consent, different client types, required vs. optional scopes, and what happens when a client doesn't get everything it asked for.
duende.link/97aeqlj 👀
#dotnet #aspnetcore
Let's see how Duende IdentityServer handles consent, different client types, required vs. optional scopes, and what happens when a client doesn't get everything it asked for.
duende.link/97aeqlj 👀
#dotnet #aspnetcore
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
October 28, 2025 at 12:31 PM
Claims and scopes describe user information in OpenID Connect.
Let's see how Duende IdentityServer handles consent, different client types, required vs. optional scopes, and what happens when a client doesn't get everything it asked for.
duende.link/97aeqlj 👀
#dotnet #aspnetcore
Let's see how Duende IdentityServer handles consent, different client types, required vs. optional scopes, and what happens when a client doesn't get everything it asked for.
duende.link/97aeqlj 👀
#dotnet #aspnetcore
Reposted by Wesley Cabus
Pssst... We at VISUG know it's "Herfstvakantie" and how challenging it can be with the kids. 🤪 So, here's a escape for all the parents out there: this Thursday at Spoor 18 in Mechelen, we've got food, drinks and sessions! (Not looking for an escape? You're welcome as well 😉)
www.visug.be/Events/104
www.visug.be/Events/104
Visug The Visual Studio User Group
November 2025 marks the release of .NET 10 and C# 14. In this session, I will talk about what is new in the latest version of .NET and what the future will bring for the .NET platform in general.…
www.visug.be
October 27, 2025 at 3:05 PM
Pssst... We at VISUG know it's "Herfstvakantie" and how challenging it can be with the kids. 🤪 So, here's a escape for all the parents out there: this Thursday at Spoor 18 in Mechelen, we've got food, drinks and sessions! (Not looking for an escape? You're welcome as well 😉)
www.visug.be/Events/104
www.visug.be/Events/104
Reposted by Wesley Cabus
Adding .NET 10 Passkey Support to Duende IdentityServer
👉 duende.link/berqe86
Learn how to add #dotnet 10 passkey support to a non-Blazor project such as MVC or Razor Pages.
#security #aspnetcore #identity #webauthn
👉 duende.link/berqe86
Learn how to add #dotnet 10 passkey support to a non-Blazor project such as MVC or Razor Pages.
#security #aspnetcore #identity #webauthn
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
October 21, 2025 at 8:49 AM
Adding .NET 10 Passkey Support to Duende IdentityServer
👉 duende.link/berqe86
Learn how to add #dotnet 10 passkey support to a non-Blazor project such as MVC or Razor Pages.
#security #aspnetcore #identity #webauthn
👉 duende.link/berqe86
Learn how to add #dotnet 10 passkey support to a non-Blazor project such as MVC or Razor Pages.
#security #aspnetcore #identity #webauthn
Reposted by Wesley Cabus
Our next livestream with Active Solution is coming up soon!
Custom Authentication in #aspdotnet Core
Go beyond the built-in authentication handlers in ASP.NET and learn about a RemoteAuthenticationHandler.
Register 👉 t.co/jgxpGooTE7
#dotnet #security #identity
Custom Authentication in #aspdotnet Core
Go beyond the built-in authentication handlers in ASP.NET and learn about a RemoteAuthenticationHandler.
Register 👉 t.co/jgxpGooTE7
#dotnet #security #identity
October 15, 2025 at 6:00 AM
Our next livestream with Active Solution is coming up soon!
Custom Authentication in #aspdotnet Core
Go beyond the built-in authentication handlers in ASP.NET and learn about a RemoteAuthenticationHandler.
Register 👉 t.co/jgxpGooTE7
#dotnet #security #identity
Custom Authentication in #aspdotnet Core
Go beyond the built-in authentication handlers in ASP.NET and learn about a RemoteAuthenticationHandler.
Register 👉 t.co/jgxpGooTE7
#dotnet #security #identity
Reposted by Wesley Cabus
🎤 Meet one of our VISUG XL 2025 speakers: 𝐀𝐧𝐣𝐮𝐥𝐢 𝐉𝐡𝐚𝐤𝐫𝐲!
We’re excited to welcome 𝐀𝐧𝐣𝐮𝐥𝐢 this year at Visug XL, our yearly, free, community-driven .NET conference.
📅 November 28, 2025
📍 UCLL Leuven
👉 More information and tickets: www.visug.be/Events/102
#VisugXL #DotNet #Community #Conference
We’re excited to welcome 𝐀𝐧𝐣𝐮𝐥𝐢 this year at Visug XL, our yearly, free, community-driven .NET conference.
📅 November 28, 2025
📍 UCLL Leuven
👉 More information and tickets: www.visug.be/Events/102
#VisugXL #DotNet #Community #Conference
October 15, 2025 at 7:30 AM
🎤 Meet one of our VISUG XL 2025 speakers: 𝐀𝐧𝐣𝐮𝐥𝐢 𝐉𝐡𝐚𝐤𝐫𝐲!
We’re excited to welcome 𝐀𝐧𝐣𝐮𝐥𝐢 this year at Visug XL, our yearly, free, community-driven .NET conference.
📅 November 28, 2025
📍 UCLL Leuven
👉 More information and tickets: www.visug.be/Events/102
#VisugXL #DotNet #Community #Conference
We’re excited to welcome 𝐀𝐧𝐣𝐮𝐥𝐢 this year at Visug XL, our yearly, free, community-driven .NET conference.
📅 November 28, 2025
📍 UCLL Leuven
👉 More information and tickets: www.visug.be/Events/102
#VisugXL #DotNet #Community #Conference
Reposted by Wesley Cabus
The server's origin is used to generate passkey credentials, making them resistant to phishing. A credential signed for one app can't be used elsewhere.
What about subdomains? Or multiple domains? In this post, we'll explore some options.
duende.link/igeq87f #dotnet #security #passkeys #webauthn
What about subdomains? Or multiple domains? In this post, we'll explore some options.
duende.link/igeq87f #dotnet #security #passkeys #webauthn
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
October 14, 2025 at 11:05 AM
The server's origin is used to generate passkey credentials, making them resistant to phishing. A credential signed for one app can't be used elsewhere.
What about subdomains? Or multiple domains? In this post, we'll explore some options.
duende.link/igeq87f #dotnet #security #passkeys #webauthn
What about subdomains? Or multiple domains? In this post, we'll explore some options.
duende.link/igeq87f #dotnet #security #passkeys #webauthn
Reposted by Wesley Cabus
We're happy to start sponsoring the Spectre.Console project!
It is a #dotnet library that makes it easier to create beautiful console applications by giving you access to standard components you may find in a CLI experience.
Go check it out! duende.link/sp3ctr3
It is a #dotnet library that makes it easier to create beautiful console applications by giving you access to standard components you may find in a CLI experience.
Go check it out! duende.link/sp3ctr3
October 9, 2025 at 9:11 AM
We're happy to start sponsoring the Spectre.Console project!
It is a #dotnet library that makes it easier to create beautiful console applications by giving you access to standard components you may find in a CLI experience.
Go check it out! duende.link/sp3ctr3
It is a #dotnet library that makes it easier to create beautiful console applications by giving you access to standard components you may find in a CLI experience.
Go check it out! duende.link/sp3ctr3
Reposted by Wesley Cabus
Say goodbye ✋ to passwords, and hello 👋 to secure, phishing-resistant logins: passkey credentials.
Part 1 of our 4-part blog series covers password and authentication evolution. Longread ahead! 👀
duende.link/p455k3y #passkeys #webauthn #dotnet #security #aspnetcore
Part 1 of our 4-part blog series covers password and authentication evolution. Longread ahead! 👀
duende.link/p455k3y #passkeys #webauthn #dotnet #security #aspnetcore
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
September 30, 2025 at 12:45 PM
Say goodbye ✋ to passwords, and hello 👋 to secure, phishing-resistant logins: passkey credentials.
Part 1 of our 4-part blog series covers password and authentication evolution. Longread ahead! 👀
duende.link/p455k3y #passkeys #webauthn #dotnet #security #aspnetcore
Part 1 of our 4-part blog series covers password and authentication evolution. Longread ahead! 👀
duende.link/p455k3y #passkeys #webauthn #dotnet #security #aspnetcore
Reposted by Wesley Cabus
Discover a key update in #dotnet 10 that improves local development! 🔥
In this blog post, we explain how a new TLS certificate and unique local domains can solve cookie conflicts and better mimic production environments.
duende.link/arbgu89
#aspnetcore #security
In this blog post, we explain how a new TLS certificate and unique local domains can solve cookie conflicts and better mimic production environments.
duende.link/arbgu89
#aspnetcore #security
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
September 29, 2025 at 9:01 AM
Discover a key update in #dotnet 10 that improves local development! 🔥
In this blog post, we explain how a new TLS certificate and unique local domains can solve cookie conflicts and better mimic production environments.
duende.link/arbgu89
#aspnetcore #security
In this blog post, we explain how a new TLS certificate and unique local domains can solve cookie conflicts and better mimic production environments.
duende.link/arbgu89
#aspnetcore #security
Hey @jetbrains.com, I'm getting an "Error 403: Not Authorized" error when completing the JetBrains Developer Recognition Program form. I tried signing in first with my account, same result.
September 29, 2025 at 9:00 AM
Hey @jetbrains.com, I'm getting an "Error 403: Not Authorized" error when completing the JetBrains Developer Recognition Program form. I tried signing in first with my account, same result.
Reposted by Wesley Cabus
Let's explore the world of OpenID Connect with a focus on claims, scopes, and how Duende IdentityServer facilitates authentication in #dotnet applications.
Learn how apps request necessary claim information! 👩🏼🏫
duende.link/j28b2bw #security #identity #aspnetcore
Learn how apps request necessary claim information! 👩🏼🏫
duende.link/j28b2bw #security #identity #aspnetcore
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
September 17, 2025 at 4:30 PM
Let's explore the world of OpenID Connect with a focus on claims, scopes, and how Duende IdentityServer facilitates authentication in #dotnet applications.
Learn how apps request necessary claim information! 👩🏼🏫
duende.link/j28b2bw #security #identity #aspnetcore
Learn how apps request necessary claim information! 👩🏼🏫
duende.link/j28b2bw #security #identity #aspnetcore
Reposted by Wesley Cabus
Brace yourself, w̶i̶n̶t̶e̶r̶ #dotnet 10 is coming! ⛄️
Let's look at the new capabilities and features we are excited about for the upcoming .NET release in November. Expect passkeys, #opentelemetry additions,TLS for *.localhost, and more.
👀 duende.link/qet4wp9 #aspnetcore
Let's look at the new capabilities and features we are excited about for the upcoming .NET release in November. Expect passkeys, #opentelemetry additions,TLS for *.localhost, and more.
👀 duende.link/qet4wp9 #aspnetcore
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
September 16, 2025 at 1:31 PM
Brace yourself, w̶i̶n̶t̶e̶r̶ #dotnet 10 is coming! ⛄️
Let's look at the new capabilities and features we are excited about for the upcoming .NET release in November. Expect passkeys, #opentelemetry additions,TLS for *.localhost, and more.
👀 duende.link/qet4wp9 #aspnetcore
Let's look at the new capabilities and features we are excited about for the upcoming .NET release in November. Expect passkeys, #opentelemetry additions,TLS for *.localhost, and more.
👀 duende.link/qet4wp9 #aspnetcore
Reposted by Wesley Cabus
Roland's video series continues! Let's see how to protect SPAs with OpenID Connect created with libraries like #Angular and #React or plain javascript.
We'll see why you want to use a BFF & how this pattern makes secure API access less cumbersome youtu.be/pSTMCyQH_E4
#dotnet #identity #aspnetcore
We'll see why you want to use a BFF & how this pattern makes secure API access less cumbersome youtu.be/pSTMCyQH_E4
#dotnet #identity #aspnetcore
Integrating SPAs with BFF
Protect SPAs with OpenID Connect created with libraries like Angular and React or even just plain javascript.
0:00 Introduction
00:28 Authentication: server-rendered vs. client-rendered
01:18 Why…
youtu.be
September 3, 2025 at 1:11 PM
Roland's video series continues! Let's see how to protect SPAs with OpenID Connect created with libraries like #Angular and #React or plain javascript.
We'll see why you want to use a BFF & how this pattern makes secure API access less cumbersome youtu.be/pSTMCyQH_E4
#dotnet #identity #aspnetcore
We'll see why you want to use a BFF & how this pattern makes secure API access less cumbersome youtu.be/pSTMCyQH_E4
#dotnet #identity #aspnetcore
Reposted by Wesley Cabus
HttpClient is at the heart of many projects. DelegatingHandlers let you intercept and modify requests and responses, extending base functionality.
In this blog post, we'll look at DelegatingHandler and how it can make HttpClient even more powerful! 💪
duende.link/78qe4kj
#dotnet #aspnetcore
In this blog post, we'll look at DelegatingHandler and how it can make HttpClient even more powerful! 💪
duende.link/78qe4kj
#dotnet #aspnetcore
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duendesoftware.com
September 2, 2025 at 1:15 PM
HttpClient is at the heart of many projects. DelegatingHandlers let you intercept and modify requests and responses, extending base functionality.
In this blog post, we'll look at DelegatingHandler and how it can make HttpClient even more powerful! 💪
duende.link/78qe4kj
#dotnet #aspnetcore
In this blog post, we'll look at DelegatingHandler and how it can make HttpClient even more powerful! 💪
duende.link/78qe4kj
#dotnet #aspnetcore
We're hiring! At @duendesoftware.com, we're looking for someone to join our Customer Success team. It's a 100% remote position but we are looking for someone based in the US East Coast region for time zone reasons.
If you're interested, visit duendesoftware.com/careers/cust... for details! #hiring
If you're interested, visit duendesoftware.com/careers/cust... for details! #hiring
Customer Success Engineer
Duende software looking to fill Customer Success Engineer position
duendesoftware.com
August 29, 2025 at 12:45 PM
We're hiring! At @duendesoftware.com, we're looking for someone to join our Customer Success team. It's a 100% remote position but we are looking for someone based in the US East Coast region for time zone reasons.
If you're interested, visit duendesoftware.com/careers/cust... for details! #hiring
If you're interested, visit duendesoftware.com/careers/cust... for details! #hiring
Holy moly! Lervig has some crazy beers in their rack house line!
August 16, 2025 at 9:32 PM
Holy moly! Lervig has some crazy beers in their rack house line!
Reposted by Wesley Cabus
How to test your #IdentityServer?
In this post, we demonstrate how to setup and run automated tests with your favorite test framework. #mstest #xunit #nunit #dotnet #security
duende.link/a4rs979
In this post, we demonstrate how to setup and run automated tests with your favorite test framework. #mstest #xunit #nunit #dotnet #security
duende.link/a4rs979
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
August 6, 2025 at 4:19 PM
How to test your #IdentityServer?
In this post, we demonstrate how to setup and run automated tests with your favorite test framework. #mstest #xunit #nunit #dotnet #security
duende.link/a4rs979
In this post, we demonstrate how to setup and run automated tests with your favorite test framework. #mstest #xunit #nunit #dotnet #security
duende.link/a4rs979
Reposted by Wesley Cabus
What are Best Practices of Web Application Security in 2025?
This post focuses on key security and authentication flows using OAuth 2.0 and OpenID Connect, flows to avoid, security measures to implement, and IETF Best Current Practices.
duende.link/iyqe3fk #security #dotnet
This post focuses on key security and authentication flows using OAuth 2.0 and OpenID Connect, flows to avoid, security measures to implement, and IETF Best Current Practices.
duende.link/iyqe3fk #security #dotnet
August 5, 2025 at 1:17 PM
What are Best Practices of Web Application Security in 2025?
This post focuses on key security and authentication flows using OAuth 2.0 and OpenID Connect, flows to avoid, security measures to implement, and IETF Best Current Practices.
duende.link/iyqe3fk #security #dotnet
This post focuses on key security and authentication flows using OAuth 2.0 and OpenID Connect, flows to avoid, security measures to implement, and IETF Best Current Practices.
duende.link/iyqe3fk #security #dotnet
Reposted by Wesley Cabus
Fresh post on external providers in #aspnetcore
We cover initial setup, the connection between external and cookie authentication, and discusses why alternatives might be better for production apps.
duende.link/q24tubs #security #identity #dotnet
We cover initial setup, the connection between external and cookie authentication, and discusses why alternatives might be better for production apps.
duende.link/q24tubs #security #identity #dotnet
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
July 28, 2025 at 12:59 PM
Fresh post on external providers in #aspnetcore
We cover initial setup, the connection between external and cookie authentication, and discusses why alternatives might be better for production apps.
duende.link/q24tubs #security #identity #dotnet
We cover initial setup, the connection between external and cookie authentication, and discusses why alternatives might be better for production apps.
duende.link/q24tubs #security #identity #dotnet
Reposted by Wesley Cabus
Coming to an ASP.NET Core HTTPS development certificate near you soon...
July 14, 2025 at 5:30 PM
Coming to an ASP.NET Core HTTPS development certificate near you soon...
Reposted by Wesley Cabus
Check out the freshly deployed IdentityServer 7.3.0 Release Candidate 1. It brings FAPI 2.0 profile certification, JWT response from the introspection endpoint, diagnostics data, OpenTelemetry updates, and more!
duende.link/is73rc1 #dotnet #security
duende.link/is73rc1 #dotnet #security
New release: IdentityServer 7.3.0 Release Candidate 1 · DuendeSoftware · Discussion #256
Great news today! The Duende IdentityServer 7.3.0 Release Candidate 1 has been published on NuGet! Release notes Upgrade guide IdentityServer 7.3 is a significant release that includes: FAPI 2.0 pr...
duende.link
July 3, 2025 at 8:01 AM
Check out the freshly deployed IdentityServer 7.3.0 Release Candidate 1. It brings FAPI 2.0 profile certification, JWT response from the introspection endpoint, diagnostics data, OpenTelemetry updates, and more!
duende.link/is73rc1 #dotnet #security
duende.link/is73rc1 #dotnet #security
Reposted by Wesley Cabus
The agenda for #CloudBrew is ready! Why not join us in December?
Early Bird tickets are now also available! 👉 www.cloudbrew.be #dotnet #azure
Early Bird tickets are now also available! 👉 www.cloudbrew.be #dotnet #azure
CloudBrew - The best two-day Azure community conference in Europe
A two-day conference by AZUG, the Belgium Microsoft Azure User Group
www.cloudbrew.be
June 25, 2025 at 7:47 AM
The agenda for #CloudBrew is ready! Why not join us in December?
Early Bird tickets are now also available! 👉 www.cloudbrew.be #dotnet #azure
Early Bird tickets are now also available! 👉 www.cloudbrew.be #dotnet #azure
Reposted by Wesley Cabus
How I got involved in the Backend for Frontend (BFF) spec? @philippederyck.bsky.social built a demo to show how insecure single-page applications can be!
Full interview: youtu.be/urS9wstmN2U
More on Backend for Frontend: duende.link/bff
#dotnet #security #bff #oauth2
Full interview: youtu.be/urS9wstmN2U
More on Backend for Frontend: duende.link/bff
#dotnet #security #bff #oauth2
June 25, 2025 at 9:32 AM
How I got involved in the Backend for Frontend (BFF) spec? @philippederyck.bsky.social built a demo to show how insecure single-page applications can be!
Full interview: youtu.be/urS9wstmN2U
More on Backend for Frontend: duende.link/bff
#dotnet #security #bff #oauth2
Full interview: youtu.be/urS9wstmN2U
More on Backend for Frontend: duende.link/bff
#dotnet #security #bff #oauth2