Dominick Baier
@leastprivilege.com
Advisor at Duende Software - @duendesoftware.com
Reposted by Dominick Baier
In this video, Christian Wenz dives deep into Cross-Site Request Forgery (CSRF), a simple yet devastating attack that has plagued web applications for years.
Learn what CSRF is, how it works, and how to defend against it in #aspnetcore
youtu.be/WUJrKw05YfI
#dotnet
Learn what CSRF is, how it works, and how to defend against it in #aspnetcore
youtu.be/WUJrKw05YfI
#dotnet
November 6, 2025 at 2:35 PM
In this video, Christian Wenz dives deep into Cross-Site Request Forgery (CSRF), a simple yet devastating attack that has plagued web applications for years.
Learn what CSRF is, how it works, and how to defend against it in #aspnetcore
youtu.be/WUJrKw05YfI
#dotnet
Learn what CSRF is, how it works, and how to defend against it in #aspnetcore
youtu.be/WUJrKw05YfI
#dotnet
Reposted by Dominick Baier
Claims and scopes describe user information in OpenID Connect.
Let's see how Duende IdentityServer handles consent, different client types, required vs. optional scopes, and what happens when a client doesn't get everything it asked for.
duende.link/97aeqlj 👀
#dotnet #aspnetcore
Let's see how Duende IdentityServer handles consent, different client types, required vs. optional scopes, and what happens when a client doesn't get everything it asked for.
duende.link/97aeqlj 👀
#dotnet #aspnetcore
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
October 28, 2025 at 12:31 PM
Claims and scopes describe user information in OpenID Connect.
Let's see how Duende IdentityServer handles consent, different client types, required vs. optional scopes, and what happens when a client doesn't get everything it asked for.
duende.link/97aeqlj 👀
#dotnet #aspnetcore
Let's see how Duende IdentityServer handles consent, different client types, required vs. optional scopes, and what happens when a client doesn't get everything it asked for.
duende.link/97aeqlj 👀
#dotnet #aspnetcore
Reposted by Dominick Baier
Adding .NET 10 Passkey Support to Duende IdentityServer
👉 duende.link/berqe86
Learn how to add #dotnet 10 passkey support to a non-Blazor project such as MVC or Razor Pages.
#security #aspnetcore #identity #webauthn
👉 duende.link/berqe86
Learn how to add #dotnet 10 passkey support to a non-Blazor project such as MVC or Razor Pages.
#security #aspnetcore #identity #webauthn
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
October 21, 2025 at 8:49 AM
Adding .NET 10 Passkey Support to Duende IdentityServer
👉 duende.link/berqe86
Learn how to add #dotnet 10 passkey support to a non-Blazor project such as MVC or Razor Pages.
#security #aspnetcore #identity #webauthn
👉 duende.link/berqe86
Learn how to add #dotnet 10 passkey support to a non-Blazor project such as MVC or Razor Pages.
#security #aspnetcore #identity #webauthn
Reposted by Dominick Baier
The server's origin is used to generate passkey credentials, making them resistant to phishing. A credential signed for one app can't be used elsewhere.
What about subdomains? Or multiple domains? In this post, we'll explore some options.
duende.link/igeq87f #dotnet #security #passkeys #webauthn
What about subdomains? Or multiple domains? In this post, we'll explore some options.
duende.link/igeq87f #dotnet #security #passkeys #webauthn
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
October 14, 2025 at 11:05 AM
The server's origin is used to generate passkey credentials, making them resistant to phishing. A credential signed for one app can't be used elsewhere.
What about subdomains? Or multiple domains? In this post, we'll explore some options.
duende.link/igeq87f #dotnet #security #passkeys #webauthn
What about subdomains? Or multiple domains? In this post, we'll explore some options.
duende.link/igeq87f #dotnet #security #passkeys #webauthn
Reposted by Dominick Baier
The upcoming release of #dotnet 10 comes with built-in passkey support. Had good fun digging into the new #Blazor project template and how it adds secure authentication using passkeys.
duende.link/37egw9f
#aspnetcore
duende.link/37egw9f
#aspnetcore
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
October 7, 2025 at 12:40 PM
The upcoming release of #dotnet 10 comes with built-in passkey support. Had good fun digging into the new #Blazor project template and how it adds secure authentication using passkeys.
duende.link/37egw9f
#aspnetcore
duende.link/37egw9f
#aspnetcore
Reposted by Dominick Baier
Duende Software's legendary training on Identity and Access Management was originally created by Dominick Baier and Brock Allen.
We're offering the training online/remotely as 6 half-day blocks the first two weeks of November.
Read more and sign up at sustainsys.com/training
We're offering the training online/remotely as 6 half-day blocks the first two weeks of November.
Read more and sign up at sustainsys.com/training
Training Information
sustainsys.com
October 7, 2025 at 2:28 PM
Duende Software's legendary training on Identity and Access Management was originally created by Dominick Baier and Brock Allen.
We're offering the training online/remotely as 6 half-day blocks the first two weeks of November.
Read more and sign up at sustainsys.com/training
We're offering the training online/remotely as 6 half-day blocks the first two weeks of November.
Read more and sign up at sustainsys.com/training
Reposted by Dominick Baier
Say goodbye ✋ to passwords, and hello 👋 to secure, phishing-resistant logins: passkey credentials.
Part 1 of our 4-part blog series covers password and authentication evolution. Longread ahead! 👀
duende.link/p455k3y #passkeys #webauthn #dotnet #security #aspnetcore
Part 1 of our 4-part blog series covers password and authentication evolution. Longread ahead! 👀
duende.link/p455k3y #passkeys #webauthn #dotnet #security #aspnetcore
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
September 30, 2025 at 12:45 PM
Say goodbye ✋ to passwords, and hello 👋 to secure, phishing-resistant logins: passkey credentials.
Part 1 of our 4-part blog series covers password and authentication evolution. Longread ahead! 👀
duende.link/p455k3y #passkeys #webauthn #dotnet #security #aspnetcore
Part 1 of our 4-part blog series covers password and authentication evolution. Longread ahead! 👀
duende.link/p455k3y #passkeys #webauthn #dotnet #security #aspnetcore
Reposted by Dominick Baier
I'm hiring! Looking for an #aspnetcore dev, ideally with identity/oidc experience. Role is support, tech presales, advisory, docs, ...
East coast US ideally for timezone overlap in the team
Small team and company, big ambition. Reach out if you're interested! duendesoftware.com/careers/cust...
East coast US ideally for timezone overlap in the team
Small team and company, big ambition. Reach out if you're interested! duendesoftware.com/careers/cust...
Customer Success Engineer
Duende software looking to fill Customer Success Engineer position
duendesoftware.com
September 25, 2025 at 4:57 PM
I'm hiring! Looking for an #aspnetcore dev, ideally with identity/oidc experience. Role is support, tech presales, advisory, docs, ...
East coast US ideally for timezone overlap in the team
Small team and company, big ambition. Reach out if you're interested! duendesoftware.com/careers/cust...
East coast US ideally for timezone overlap in the team
Small team and company, big ambition. Reach out if you're interested! duendesoftware.com/careers/cust...
Reposted by Dominick Baier
Discover a key update in #dotnet 10 that improves local development! 🔥
👉 Our latest blog post explains how a new TLS certificate and unique local domains can solve cookie conflicts and better mimic production environments.
duende.link/arbgu89
#aspnetcore #security
👉 Our latest blog post explains how a new TLS certificate and unique local domains can solve cookie conflicts and better mimic production environments.
duende.link/arbgu89
#aspnetcore #security
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
September 23, 2025 at 1:31 PM
Discover a key update in #dotnet 10 that improves local development! 🔥
👉 Our latest blog post explains how a new TLS certificate and unique local domains can solve cookie conflicts and better mimic production environments.
duende.link/arbgu89
#aspnetcore #security
👉 Our latest blog post explains how a new TLS certificate and unique local domains can solve cookie conflicts and better mimic production environments.
duende.link/arbgu89
#aspnetcore #security
Reposted by Dominick Baier
Reposted by Dominick Baier
The IETF OAuth Working Group has adopted the Identity Assertion Authorization Grant specification!
datatracker.ietf.org/doc/draft-ie...
This is the basis of Cross App Access (XAA), providing IT admins better visibility and control by configuring the app-to-app connections in their enterprise IdP.
datatracker.ietf.org/doc/draft-ie...
This is the basis of Cross App Access (XAA), providing IT admins better visibility and control by configuring the app-to-app connections in their enterprise IdP.
Identity Assertion Authorization Grant
This specification provides a mechanism for an application to use an identity assertion to obtain an access token for a third-party API by coordinating through a common enterprise identity provider us...
datatracker.ietf.org
September 20, 2025 at 2:19 PM
The IETF OAuth Working Group has adopted the Identity Assertion Authorization Grant specification!
datatracker.ietf.org/doc/draft-ie...
This is the basis of Cross App Access (XAA), providing IT admins better visibility and control by configuring the app-to-app connections in their enterprise IdP.
datatracker.ietf.org/doc/draft-ie...
This is the basis of Cross App Access (XAA), providing IT admins better visibility and control by configuring the app-to-app connections in their enterprise IdP.
Reposted by Dominick Baier
Don't miss our livestream tomorrow with Microsoft .NET MVP Tore Nestenius!
Demystifying Authentication in #aspnetcore Core.
📅 September 18, 2025
🕐 10:00 EST / 16:00 CEST
Register now: duendesoftware.com/webinars/dem...
#security #identity
Demystifying Authentication in #aspnetcore Core.
📅 September 18, 2025
🕐 10:00 EST / 16:00 CEST
Register now: duendesoftware.com/webinars/dem...
#security #identity
September 18, 2025 at 3:45 AM
Don't miss our livestream tomorrow with Microsoft .NET MVP Tore Nestenius!
Demystifying Authentication in #aspnetcore Core.
📅 September 18, 2025
🕐 10:00 EST / 16:00 CEST
Register now: duendesoftware.com/webinars/dem...
#security #identity
Demystifying Authentication in #aspnetcore Core.
📅 September 18, 2025
🕐 10:00 EST / 16:00 CEST
Register now: duendesoftware.com/webinars/dem...
#security #identity
Reposted by Dominick Baier
Brace yourself, w̶i̶n̶t̶e̶r̶ #dotnet 10 is coming! ⛄️
Let's look at the new capabilities and features we are excited about for the upcoming .NET release in November. Expect passkeys, #opentelemetry additions,TLS for *.localhost, and more.
👀 duende.link/qet4wp9 #aspnetcore
Let's look at the new capabilities and features we are excited about for the upcoming .NET release in November. Expect passkeys, #opentelemetry additions,TLS for *.localhost, and more.
👀 duende.link/qet4wp9 #aspnetcore
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
September 16, 2025 at 1:31 PM
Brace yourself, w̶i̶n̶t̶e̶r̶ #dotnet 10 is coming! ⛄️
Let's look at the new capabilities and features we are excited about for the upcoming .NET release in November. Expect passkeys, #opentelemetry additions,TLS for *.localhost, and more.
👀 duende.link/qet4wp9 #aspnetcore
Let's look at the new capabilities and features we are excited about for the upcoming .NET release in November. Expect passkeys, #opentelemetry additions,TLS for *.localhost, and more.
👀 duende.link/qet4wp9 #aspnetcore
Reposted by Dominick Baier
If you missed my live stream, don't worry—the internet will keep it available forever. And if I said anything dumb, that's also never going away.
Watch the recording of our #IdentityServer 7.3 launch!
duendesoftware.com/webinars/due...
Joe DeCock covers new templates, and looks at setting up your environment for the FAPI 2.0 security profile and conformance tests.
#dotnet #security #identity
duendesoftware.com/webinars/due...
Joe DeCock covers new templates, and looks at setting up your environment for the FAPI 2.0 security profile and conformance tests.
#dotnet #security #identity
September 6, 2025 at 11:21 PM
If you missed my live stream, don't worry—the internet will keep it available forever. And if I said anything dumb, that's also never going away.
Reposted by Dominick Baier
Watch the recording of our #IdentityServer 7.3 launch!
duendesoftware.com/webinars/due...
Joe DeCock covers new templates, and looks at setting up your environment for the FAPI 2.0 security profile and conformance tests.
#dotnet #security #identity
duendesoftware.com/webinars/due...
Joe DeCock covers new templates, and looks at setting up your environment for the FAPI 2.0 security profile and conformance tests.
#dotnet #security #identity
September 5, 2025 at 1:07 PM
Watch the recording of our #IdentityServer 7.3 launch!
duendesoftware.com/webinars/due...
Joe DeCock covers new templates, and looks at setting up your environment for the FAPI 2.0 security profile and conformance tests.
#dotnet #security #identity
duendesoftware.com/webinars/due...
Joe DeCock covers new templates, and looks at setting up your environment for the FAPI 2.0 security profile and conformance tests.
#dotnet #security #identity
Reposted by Dominick Baier
What are Best Practices of Web Application Security in 2025?
This post focuses on key security and authentication flows using OAuth 2.0 and OpenID Connect, flows to avoid, security measures to implement, and IETF Best Current Practices.
duende.link/iyqe3fk #security #dotnet
This post focuses on key security and authentication flows using OAuth 2.0 and OpenID Connect, flows to avoid, security measures to implement, and IETF Best Current Practices.
duende.link/iyqe3fk #security #dotnet
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
September 5, 2025 at 1:03 PM
What are Best Practices of Web Application Security in 2025?
This post focuses on key security and authentication flows using OAuth 2.0 and OpenID Connect, flows to avoid, security measures to implement, and IETF Best Current Practices.
duende.link/iyqe3fk #security #dotnet
This post focuses on key security and authentication flows using OAuth 2.0 and OpenID Connect, flows to avoid, security measures to implement, and IETF Best Current Practices.
duende.link/iyqe3fk #security #dotnet
Reposted by Dominick Baier
We'll host a livestream with Tore Nestenius! 📹
Authentication has many concepts and moving parts. In this session, we'll clarify how authentication in #aspnetcore works.
📅 September 18, 2025
🕐 10:00 EST / 16:00 CEST
duendesoftware.com/webinars/dem...
#dotnet #security
Authentication has many concepts and moving parts. In this session, we'll clarify how authentication in #aspnetcore works.
📅 September 18, 2025
🕐 10:00 EST / 16:00 CEST
duendesoftware.com/webinars/dem...
#dotnet #security
Demystifying authentication in ASP.NET Core
Demystify ASP.NET Core authentication. Learn key concepts like schemas, handlers, and ClaimsPrincipal in this hands-on deep dive with .NET MVP Tore Nestenius.
duendesoftware.com
September 4, 2025 at 10:02 AM
We'll host a livestream with Tore Nestenius! 📹
Authentication has many concepts and moving parts. In this session, we'll clarify how authentication in #aspnetcore works.
📅 September 18, 2025
🕐 10:00 EST / 16:00 CEST
duendesoftware.com/webinars/dem...
#dotnet #security
Authentication has many concepts and moving parts. In this session, we'll clarify how authentication in #aspnetcore works.
📅 September 18, 2025
🕐 10:00 EST / 16:00 CEST
duendesoftware.com/webinars/dem...
#dotnet #security
Reposted by Dominick Baier
HttpClient is at the heart of many projects. DelegatingHandlers let you intercept and modify requests and responses, extending base functionality.
In this blog post, we'll look at DelegatingHandler and how it can make HttpClient even more powerful! 💪
duende.link/78qe4kj
#dotnet #aspnetcore
In this blog post, we'll look at DelegatingHandler and how it can make HttpClient even more powerful! 💪
duende.link/78qe4kj
#dotnet #aspnetcore
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duendesoftware.com
September 2, 2025 at 1:15 PM
HttpClient is at the heart of many projects. DelegatingHandlers let you intercept and modify requests and responses, extending base functionality.
In this blog post, we'll look at DelegatingHandler and how it can make HttpClient even more powerful! 💪
duende.link/78qe4kj
#dotnet #aspnetcore
In this blog post, we'll look at DelegatingHandler and how it can make HttpClient even more powerful! 💪
duende.link/78qe4kj
#dotnet #aspnetcore
Reposted by Dominick Baier
We're hiring! At @duendesoftware.com, we're looking for someone to join our Customer Success team. It's a 100% remote position but we are looking for someone based in the US East Coast region for time zone reasons.
If you're interested, visit duendesoftware.com/careers/cust... for details! #hiring
If you're interested, visit duendesoftware.com/careers/cust... for details! #hiring
Customer Success Engineer
Duende software looking to fill Customer Success Engineer position
duendesoftware.com
August 29, 2025 at 12:45 PM
We're hiring! At @duendesoftware.com, we're looking for someone to join our Customer Success team. It's a 100% remote position but we are looking for someone based in the US East Coast region for time zone reasons.
If you're interested, visit duendesoftware.com/careers/cust... for details! #hiring
If you're interested, visit duendesoftware.com/careers/cust... for details! #hiring
Reposted by Dominick Baier
Reposted by Dominick Baier
Meet Duende #IdentityServer v7.3! This new release includes:
👉 Enhanced security & future proofing with FAPI 2.0 support
👉 Quick start templates to accelerate development.
👉 And more....
Release blog here ➡️ duende.link/is73b0b
#dotnet #security #identity
👉 Enhanced security & future proofing with FAPI 2.0 support
👉 Quick start templates to accelerate development.
👉 And more....
Release blog here ➡️ duende.link/is73b0b
#dotnet #security #identity
August 19, 2025 at 1:51 PM
Meet Duende #IdentityServer v7.3! This new release includes:
👉 Enhanced security & future proofing with FAPI 2.0 support
👉 Quick start templates to accelerate development.
👉 And more....
Release blog here ➡️ duende.link/is73b0b
#dotnet #security #identity
👉 Enhanced security & future proofing with FAPI 2.0 support
👉 Quick start templates to accelerate development.
👉 And more....
Release blog here ➡️ duende.link/is73b0b
#dotnet #security #identity
Reposted by Dominick Baier
External identity providers in #aspnetcore
In this post, we cover initial setup (with Google), the connection between external and cookie authentication, and discusses why alternatives might be better for production apps.
duende.link/q24tubs #security #identity #dotnet
In this post, we cover initial setup (with Google), the connection between external and cookie authentication, and discusses why alternatives might be better for production apps.
duende.link/q24tubs #security #identity #dotnet
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
August 19, 2025 at 9:43 PM
External identity providers in #aspnetcore
In this post, we cover initial setup (with Google), the connection between external and cookie authentication, and discusses why alternatives might be better for production apps.
duende.link/q24tubs #security #identity #dotnet
In this post, we cover initial setup (with Google), the connection between external and cookie authentication, and discusses why alternatives might be better for production apps.
duende.link/q24tubs #security #identity #dotnet
Reposted by Dominick Baier
Meet Duende #IdentityServer v7.3! This new release includes:
👉 Enhanced security & future proofing with FAPI 2.0 support
👉 Quick start templates to accelerate development.
👉 And more....
Release blog here ➡️ duende.link/is73b0b
#dotnet #security #identity
👉 Enhanced security & future proofing with FAPI 2.0 support
👉 Quick start templates to accelerate development.
👉 And more....
Release blog here ➡️ duende.link/is73b0b
#dotnet #security #identity
August 14, 2025 at 1:26 PM
Meet Duende #IdentityServer v7.3! This new release includes:
👉 Enhanced security & future proofing with FAPI 2.0 support
👉 Quick start templates to accelerate development.
👉 And more....
Release blog here ➡️ duende.link/is73b0b
#dotnet #security #identity
👉 Enhanced security & future proofing with FAPI 2.0 support
👉 Quick start templates to accelerate development.
👉 And more....
Release blog here ➡️ duende.link/is73b0b
#dotnet #security #identity
Reposted by Dominick Baier
We're at #kcdc2025
Stop by and register to win a NASA Artemis Space Launch System LEGO set. Or just say hello and meet the Duende team. Learn more about our newly released Duende #IdentityServer v7.3 with FAPI 2.0.
#dotnet #security #identity
Stop by and register to win a NASA Artemis Space Launch System LEGO set. Or just say hello and meet the Duende team. Learn more about our newly released Duende #IdentityServer v7.3 with FAPI 2.0.
#dotnet #security #identity
August 14, 2025 at 2:40 PM
We're at #kcdc2025
Stop by and register to win a NASA Artemis Space Launch System LEGO set. Or just say hello and meet the Duende team. Learn more about our newly released Duende #IdentityServer v7.3 with FAPI 2.0.
#dotnet #security #identity
Stop by and register to win a NASA Artemis Space Launch System LEGO set. Or just say hello and meet the Duende team. Learn more about our newly released Duende #IdentityServer v7.3 with FAPI 2.0.
#dotnet #security #identity
Reposted by Dominick Baier
Livestream Launch Event: Duende #IdentityServer 7.3 with FAPI 2.0 + New Quick Start Templates.
🗓️ August 21, 2025
🕑 10 EST / 16:00 CEST / 14:00 UTC
🧑🦰 Speaker: Joe DeCock
Clear your calendars and register here ➡️ duende.link/is73w0b
#dotnet #security #identity
🗓️ August 21, 2025
🕑 10 EST / 16:00 CEST / 14:00 UTC
🧑🦰 Speaker: Joe DeCock
Clear your calendars and register here ➡️ duende.link/is73w0b
#dotnet #security #identity
August 13, 2025 at 6:00 AM
Livestream Launch Event: Duende #IdentityServer 7.3 with FAPI 2.0 + New Quick Start Templates.
🗓️ August 21, 2025
🕑 10 EST / 16:00 CEST / 14:00 UTC
🧑🦰 Speaker: Joe DeCock
Clear your calendars and register here ➡️ duende.link/is73w0b
#dotnet #security #identity
🗓️ August 21, 2025
🕑 10 EST / 16:00 CEST / 14:00 UTC
🧑🦰 Speaker: Joe DeCock
Clear your calendars and register here ➡️ duende.link/is73w0b
#dotnet #security #identity