Adam Ralph
@adamralph.com
software simplifier · @duendesoftware.com (previously @particular.net) · speaker · OSS maintainer · MS MVP · this account used for professional and OSS purposes
Reposted by Adam Ralph
Claims and scopes describe user information in OpenID Connect.
Let's see how Duende IdentityServer handles consent, different client types, required vs. optional scopes, and what happens when a client doesn't get everything it asked for.
duende.link/97aeqlj 👀
#dotnet #aspnetcore
Let's see how Duende IdentityServer handles consent, different client types, required vs. optional scopes, and what happens when a client doesn't get everything it asked for.
duende.link/97aeqlj 👀
#dotnet #aspnetcore
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
October 28, 2025 at 12:31 PM
Claims and scopes describe user information in OpenID Connect.
Let's see how Duende IdentityServer handles consent, different client types, required vs. optional scopes, and what happens when a client doesn't get everything it asked for.
duende.link/97aeqlj 👀
#dotnet #aspnetcore
Let's see how Duende IdentityServer handles consent, different client types, required vs. optional scopes, and what happens when a client doesn't get everything it asked for.
duende.link/97aeqlj 👀
#dotnet #aspnetcore
Reposted by Adam Ralph
Adding .NET 10 Passkey Support to Duende IdentityServer
👉 duende.link/berqe86
Learn how to add #dotnet 10 passkey support to a non-Blazor project such as MVC or Razor Pages.
#security #aspnetcore #identity #webauthn
👉 duende.link/berqe86
Learn how to add #dotnet 10 passkey support to a non-Blazor project such as MVC or Razor Pages.
#security #aspnetcore #identity #webauthn
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
October 21, 2025 at 8:49 AM
Adding .NET 10 Passkey Support to Duende IdentityServer
👉 duende.link/berqe86
Learn how to add #dotnet 10 passkey support to a non-Blazor project such as MVC or Razor Pages.
#security #aspnetcore #identity #webauthn
👉 duende.link/berqe86
Learn how to add #dotnet 10 passkey support to a non-Blazor project such as MVC or Razor Pages.
#security #aspnetcore #identity #webauthn
This. I've already dropped at least one commercial product for trying too hard to force their AI offering down my throat.
I started to value AI-free products. Just do the job, don't force AI into it.
August 5, 2025 at 4:11 PM
This. I've already dropped at least one commercial product for trying too hard to force their AI offering down my throat.
Reposted by Adam Ralph
Fresh post on external providers in #aspnetcore
We cover initial setup, the connection between external and cookie authentication, and discusses why alternatives might be better for production apps.
duende.link/q24tubs #security #identity #dotnet
We cover initial setup, the connection between external and cookie authentication, and discusses why alternatives might be better for production apps.
duende.link/q24tubs #security #identity #dotnet
Duende Software - Identity and Access Management for .NET
We help companies using .NET to build identity and access control solutions for modern applications.
duende.link
July 28, 2025 at 12:59 PM
Fresh post on external providers in #aspnetcore
We cover initial setup, the connection between external and cookie authentication, and discusses why alternatives might be better for production apps.
duende.link/q24tubs #security #identity #dotnet
We cover initial setup, the connection between external and cookie authentication, and discusses why alternatives might be better for production apps.
duende.link/q24tubs #security #identity #dotnet
I'm beyond sick to the teeth of “Introducing [product name] AI”
July 6, 2025 at 2:07 PM
I'm beyond sick to the teeth of “Introducing [product name] AI”
Reposted by Adam Ralph
Add an extra layer of security to critical user actions! 🛡️
Learn how to implement Step Up challenges in your #aspnetcore apps with Duende #IdentityServer to enhance user verification and re-confirm identity for some activities.
duende.link/qthej2r
#dotnet #security #oidc
Learn how to implement Step Up challenges in your #aspnetcore apps with Duende #IdentityServer to enhance user verification and re-confirm identity for some activities.
duende.link/qthej2r
#dotnet #security #oidc
July 1, 2025 at 1:00 PM
Add an extra layer of security to critical user actions! 🛡️
Learn how to implement Step Up challenges in your #aspnetcore apps with Duende #IdentityServer to enhance user verification and re-confirm identity for some activities.
duende.link/qthej2r
#dotnet #security #oidc
Learn how to implement Step Up challenges in your #aspnetcore apps with Duende #IdentityServer to enhance user verification and re-confirm identity for some activities.
duende.link/qthej2r
#dotnet #security #oidc
Reposted by Adam Ralph
The #dotnet 8.0.17 upgrade fixed validation of forwarded headers and proxy server configuration in load balanced scenarios.
Great! Or not 🤔
This patch may affect your #aspnetcore app. 😱
Check our blog post for background and fix: duende.link/0mgnet8
Great! Or not 🤔
This patch may affect your #aspnetcore app. 😱
Check our blog post for background and fix: duende.link/0mgnet8
June 24, 2025 at 1:01 PM
The #dotnet 8.0.17 upgrade fixed validation of forwarded headers and proxy server configuration in load balanced scenarios.
Great! Or not 🤔
This patch may affect your #aspnetcore app. 😱
Check our blog post for background and fix: duende.link/0mgnet8
Great! Or not 🤔
This patch may affect your #aspnetcore app. 😱
Check our blog post for background and fix: duende.link/0mgnet8
Reposted by Adam Ralph
Terms like "client" in OpenID Connect and OAuth 2.0 are clear for security folks, but non-technical people are sometimes confused.
In this post, let's clarify what a "client" means in application security.
duende.link/m8tyde4 #dotnet #security #identity
In this post, let's clarify what a "client" means in application security.
duende.link/m8tyde4 #dotnet #security #identity
June 17, 2025 at 11:30 AM
Terms like "client" in OpenID Connect and OAuth 2.0 are clear for security folks, but non-technical people are sometimes confused.
In this post, let's clarify what a "client" means in application security.
duende.link/m8tyde4 #dotnet #security #identity
In this post, let's clarify what a "client" means in application security.
duende.link/m8tyde4 #dotnet #security #identity
Reposted by Adam Ralph
Monitoring IdentityServer License Usage with #aspnetcore Health Checks 🔍
🤔 How to create custom health checks
👍 Registering them
💡 Example health checks for IdentityServer
Find out in this blog post! duende.link/hi7fw5q #dotnet #identity
🤔 How to create custom health checks
👍 Registering them
💡 Example health checks for IdentityServer
Find out in this blog post! duende.link/hi7fw5q #dotnet #identity
June 10, 2025 at 1:01 PM
Monitoring IdentityServer License Usage with #aspnetcore Health Checks 🔍
🤔 How to create custom health checks
👍 Registering them
💡 Example health checks for IdentityServer
Find out in this blog post! duende.link/hi7fw5q #dotnet #identity
🤔 How to create custom health checks
👍 Registering them
💡 Example health checks for IdentityServer
Find out in this blog post! duende.link/hi7fw5q #dotnet #identity
Reposted by Adam Ralph
What are some of the essential moments in the OAuth and OpenID Connect timeline?
In this article, we look back at the past 15 years to explore how the IETF and OpenID Foundation have set standards that shaped OAuth and OpenID Connect today.
duende.link/q39aegk #dotnet #security #ietf #oidc
In this article, we look back at the past 15 years to explore how the IETF and OpenID Foundation have set standards that shaped OAuth and OpenID Connect today.
duende.link/q39aegk #dotnet #security #ietf #oidc
May 20, 2025 at 1:15 PM
What are some of the essential moments in the OAuth and OpenID Connect timeline?
In this article, we look back at the past 15 years to explore how the IETF and OpenID Foundation have set standards that shaped OAuth and OpenID Connect today.
duende.link/q39aegk #dotnet #security #ietf #oidc
In this article, we look back at the past 15 years to explore how the IETF and OpenID Foundation have set standards that shaped OAuth and OpenID Connect today.
duende.link/q39aegk #dotnet #security #ietf #oidc
Reposted by Adam Ralph
IdentityServer can use OpenTelemetry and share metrics, traces, and logs to help monitor and troubleshoot applications.
In this post, we'll see how to surface this data in the .NET Aspire dashboard! 🧐
duende.link/xa5p1r3 #dotnet #aspire #identityserver #otel
In this post, we'll see how to surface this data in the .NET Aspire dashboard! 🧐
duende.link/xa5p1r3 #dotnet #aspire #identityserver #otel
May 13, 2025 at 11:37 AM
IdentityServer can use OpenTelemetry and share metrics, traces, and logs to help monitor and troubleshoot applications.
In this post, we'll see how to surface this data in the .NET Aspire dashboard! 🧐
duende.link/xa5p1r3 #dotnet #aspire #identityserver #otel
In this post, we'll see how to surface this data in the .NET Aspire dashboard! 🧐
duende.link/xa5p1r3 #dotnet #aspire #identityserver #otel
Reposted by Adam Ralph
In recent weeks, some of our customers reported performance degradations. You won't believe what happened next 😱
Clickbait aside, #efcore, SqlClient, and transient retries don't always go well together. More on our blog!
duende.link/1khti3w #dotnet #identityserver #azure
Clickbait aside, #efcore, SqlClient, and transient retries don't always go well together. More on our blog!
duende.link/1khti3w #dotnet #identityserver #azure
Microsoft Azure SQL and Entity Framework Core Performance Issues and Solution
Many IdentityServer users are upgrading their deployments to the latest version of .NET and Duende IdentityServer. Most upgrades are uneventful and fair, with many users pleasantly surprised by a…
duende.link
May 6, 2025 at 12:45 PM
In recent weeks, some of our customers reported performance degradations. You won't believe what happened next 😱
Clickbait aside, #efcore, SqlClient, and transient retries don't always go well together. More on our blog!
duende.link/1khti3w #dotnet #identityserver #azure
Clickbait aside, #efcore, SqlClient, and transient retries don't always go well together. More on our blog!
duende.link/1khti3w #dotnet #identityserver #azure
Reposted by Adam Ralph
Managing OpenAPI Specifications with Backend For Frontend and Swagger UI 📚
We'll briefly recap the BFF pattern, and then dive into a sample & learn how to reveal your OpenAPI specifications securely.
duende.link/73hbw12 #dotnet #security #bff #openapi #aspnetcore
We'll briefly recap the BFF pattern, and then dive into a sample & learn how to reveal your OpenAPI specifications securely.
duende.link/73hbw12 #dotnet #security #bff #openapi #aspnetcore
April 30, 2025 at 1:30 PM
Managing OpenAPI Specifications with Backend For Frontend and Swagger UI 📚
We'll briefly recap the BFF pattern, and then dive into a sample & learn how to reveal your OpenAPI specifications securely.
duende.link/73hbw12 #dotnet #security #bff #openapi #aspnetcore
We'll briefly recap the BFF pattern, and then dive into a sample & learn how to reveal your OpenAPI specifications securely.
duende.link/73hbw12 #dotnet #security #bff #openapi #aspnetcore
Reposted by Adam Ralph
Introducing the Duende Developer Community (and a new documentation site!)
🏘️ Community: connect with peers around #identityserver, #bff, #oidc, and more!
📝 New docs: fresh design, new topics, dark mode, ...
Learn more on our blog 👉 duende.link/1uiro2d #dotnet #security
🏘️ Community: connect with peers around #identityserver, #bff, #oidc, and more!
📝 New docs: fresh design, new topics, dark mode, ...
Learn more on our blog 👉 duende.link/1uiro2d #dotnet #security
April 28, 2025 at 12:17 PM
Introducing the Duende Developer Community (and a new documentation site!)
🏘️ Community: connect with peers around #identityserver, #bff, #oidc, and more!
📝 New docs: fresh design, new topics, dark mode, ...
Learn more on our blog 👉 duende.link/1uiro2d #dotnet #security
🏘️ Community: connect with peers around #identityserver, #bff, #oidc, and more!
📝 New docs: fresh design, new topics, dark mode, ...
Learn more on our blog 👉 duende.link/1uiro2d #dotnet #security
Reposted by Adam Ralph
Secure machine-to-machine communication?
In this video, Roland walks you through the #oauth2 Client Credentials flow. It's relatively straightforward, and a great way to get introduced to OAuth.
📺 youtu.be/_ncPlNlcavo
#oauth2 #identityserver #accesstoken #dotnet #security
In this video, Roland walks you through the #oauth2 Client Credentials flow. It's relatively straightforward, and a great way to get introduced to OAuth.
📺 youtu.be/_ncPlNlcavo
#oauth2 #identityserver #accesstoken #dotnet #security
April 24, 2025 at 12:59 PM
Secure machine-to-machine communication?
In this video, Roland walks you through the #oauth2 Client Credentials flow. It's relatively straightforward, and a great way to get introduced to OAuth.
📺 youtu.be/_ncPlNlcavo
#oauth2 #identityserver #accesstoken #dotnet #security
In this video, Roland walks you through the #oauth2 Client Credentials flow. It's relatively straightforward, and a great way to get introduced to OAuth.
📺 youtu.be/_ncPlNlcavo
#oauth2 #identityserver #accesstoken #dotnet #security
Reposted by Adam Ralph
Authorization Policy TagHelpers for ASP .NET Core Razor Views
This post discusses creating an AuthorizationPolicyTagHelper to build nicer Razor Pages views where the content depends on the ClaimsPrincipal and authorization policy. 🔐
duende.link/2wywy44
#aspnetcore #dotnet #security
This post discusses creating an AuthorizationPolicyTagHelper to build nicer Razor Pages views where the content depends on the ClaimsPrincipal and authorization policy. 🔐
duende.link/2wywy44
#aspnetcore #dotnet #security
April 22, 2025 at 12:55 PM
Authorization Policy TagHelpers for ASP .NET Core Razor Views
This post discusses creating an AuthorizationPolicyTagHelper to build nicer Razor Pages views where the content depends on the ClaimsPrincipal and authorization policy. 🔐
duende.link/2wywy44
#aspnetcore #dotnet #security
This post discusses creating an AuthorizationPolicyTagHelper to build nicer Razor Pages views where the content depends on the ClaimsPrincipal and authorization policy. 🔐
duende.link/2wywy44
#aspnetcore #dotnet #security
Reposted by Adam Ralph
Kicking off our Open Source Sponsorship program this quarter, where our developers picked a project we'll sponsor for 12 months:
🙌 Shouldly Assertion Framework
We're using it ourselves, and here's why you may want to:
duende.link/w4whryh #dotnet #testing
🙌 Shouldly Assertion Framework
We're using it ourselves, and here's why you may want to:
duende.link/w4whryh #dotnet #testing
April 15, 2025 at 12:51 PM
Kicking off our Open Source Sponsorship program this quarter, where our developers picked a project we'll sponsor for 12 months:
🙌 Shouldly Assertion Framework
We're using it ourselves, and here's why you may want to:
duende.link/w4whryh #dotnet #testing
🙌 Shouldly Assertion Framework
We're using it ourselves, and here's why you may want to:
duende.link/w4whryh #dotnet #testing
Reposted by Adam Ralph
Secure your #VueJS apps with OpenID Connect & the BFF pattern! 🔒
We’ll look at the basic architecture of a BFF solution, the responsibilities of each component, and how it all fits together.
duende.link/eshdrq4
#Security #OAuth2 #OpenIDConnect #dotnet
We’ll look at the basic architecture of a BFF solution, the responsibilities of each component, and how it all fits together.
duende.link/eshdrq4
#Security #OAuth2 #OpenIDConnect #dotnet
April 9, 2025 at 12:27 PM
Secure your #VueJS apps with OpenID Connect & the BFF pattern! 🔒
We’ll look at the basic architecture of a BFF solution, the responsibilities of each component, and how it all fits together.
duende.link/eshdrq4
#Security #OAuth2 #OpenIDConnect #dotnet
We’ll look at the basic architecture of a BFF solution, the responsibilities of each component, and how it all fits together.
duende.link/eshdrq4
#Security #OAuth2 #OpenIDConnect #dotnet
Bullseye 6.0.0 is out now! Thanks to Yauhen Pyl for contributing to this release. www.nuget.org/packages/Bul...
April 2, 2025 at 8:30 AM
Bullseye 6.0.0 is out now! Thanks to Yauhen Pyl for contributing to this release. www.nuget.org/packages/Bul...
Reposted by Adam Ralph
A common attack web devs need to guard against is Cross-Site Request Forgery (CSRF).
🦸♀️ Anti-Forgery tokens to the rescue!
Let's see how they work in more detail 👇
duende.link/wk7e6sg #dotnet #aspnetcore
🦸♀️ Anti-Forgery tokens to the rescue!
Let's see how they work in more detail 👇
duende.link/wk7e6sg #dotnet #aspnetcore
March 25, 2025 at 1:32 PM
A common attack web devs need to guard against is Cross-Site Request Forgery (CSRF).
🦸♀️ Anti-Forgery tokens to the rescue!
Let's see how they work in more detail 👇
duende.link/wk7e6sg #dotnet #aspnetcore
🦸♀️ Anti-Forgery tokens to the rescue!
Let's see how they work in more detail 👇
duende.link/wk7e6sg #dotnet #aspnetcore
Reposted by Adam Ralph
Today brings you #IdentityServer 7.2! 🎁
1️⃣ Strict Audience Validation ensures that the audience is equal to the issuer and validates the token’s typ value.
2️⃣ Discovery Document Caching helps throughput in large deployments
And more! 👉 duende.link/hjdsk82 #dotnet #aspnetcore
1️⃣ Strict Audience Validation ensures that the audience is equal to the issuer and validates the token’s typ value.
2️⃣ Discovery Document Caching helps throughput in large deployments
And more! 👉 duende.link/hjdsk82 #dotnet #aspnetcore
March 18, 2025 at 4:12 PM
Today brings you #IdentityServer 7.2! 🎁
1️⃣ Strict Audience Validation ensures that the audience is equal to the issuer and validates the token’s typ value.
2️⃣ Discovery Document Caching helps throughput in large deployments
And more! 👉 duende.link/hjdsk82 #dotnet #aspnetcore
1️⃣ Strict Audience Validation ensures that the audience is equal to the issuer and validates the token’s typ value.
2️⃣ Discovery Document Caching helps throughput in large deployments
And more! 👉 duende.link/hjdsk82 #dotnet #aspnetcore
Reposted by Adam Ralph
Good news! We just released Duende Backend-for-Frontend (BFF) Security Framework V3.
All the necessary components to secure browser-based frontends (e.g. SPAs or #Blazor applications) with #aspnetcore backends.
duende.link/iuq3t4n #dotnet
All the necessary components to secure browser-based frontends (e.g. SPAs or #Blazor applications) with #aspnetcore backends.
duende.link/iuq3t4n #dotnet
March 17, 2025 at 2:03 PM
Good news! We just released Duende Backend-for-Frontend (BFF) Security Framework V3.
All the necessary components to secure browser-based frontends (e.g. SPAs or #Blazor applications) with #aspnetcore backends.
duende.link/iuq3t4n #dotnet
All the necessary components to secure browser-based frontends (e.g. SPAs or #Blazor applications) with #aspnetcore backends.
duende.link/iuq3t4n #dotnet
Why can't I have issue types in my personal @github.com repos? They have tasks, bugs, and features just as much as any org repo I work in.
February 23, 2025 at 7:17 AM
Why can't I have issue types in my personal @github.com repos? They have tasks, bugs, and features just as much as any org repo I work in.
Reposted by Adam Ralph
We discovered a flaw in our website's contact form and some Community Edition requests were never received.
If you didn't heard back after sending your request, please reach out via duendesoftware.com/contact - we've resolved the issue.
Sorry for the inconvenience!
If you didn't heard back after sending your request, please reach out via duendesoftware.com/contact - we've resolved the issue.
Sorry for the inconvenience!
February 7, 2025 at 3:08 PM
We discovered a flaw in our website's contact form and some Community Edition requests were never received.
If you didn't heard back after sending your request, please reach out via duendesoftware.com/contact - we've resolved the issue.
Sorry for the inconvenience!
If you didn't heard back after sending your request, please reach out via duendesoftware.com/contact - we've resolved the issue.
Sorry for the inconvenience!
Reposted by Adam Ralph
Let's try this GitHub discussions thing... Who's still on IdentityServer 4, and why? #dotnet
github.com/orgs/DuendeS...
github.com/orgs/DuendeS...
Who's still on IdentityServer 4, and why? · DuendeSoftware · Discussion #36
When looking at NuGet, I noticed IdentityServer 4 still has many downloads. Which makes me curious: who's still on IdentityServer 4, and why? Is it because your solution is locked on an older .NET ...
github.com
February 6, 2025 at 11:05 AM
Let's try this GitHub discussions thing... Who's still on IdentityServer 4, and why? #dotnet
github.com/orgs/DuendeS...
github.com/orgs/DuendeS...