Duende Software

Client-Initiated Backchannel Authentication (CIBA) in ASP.NET Core 10 with Duende Identity Server Learn about the Client-Initiated Backchannel Authentication (CIBA) standard, an OpenID Connect extension for authenticating users on a separate device. See how to implement this high-trust flow with…

Authentication on a different device from the one you're using? 🧐

Learn how to implement Client-Initiated Backchannel Authentication (CIBA) in #ASPNETCore and #dotnet: duende.link/3ysz4u

Especially helpful in high-trust scenarios.

.NET 10 performance benefits everyone. By optimizing IdentityServer for the new runtime, we pass those gains down to every application that relies on us. Reduced CPU cycles in auth mean lower cloud bills for the entire community.

Learn More 👉️ duende.link/is74b0b

#aspnet #aspnetcore #dotnet

The Big Picture An overview of modern application architecture patterns and how OpenID Connect and OAuth 2.0 protocols implemented by IdentityServer solve authentication and API access challenges

The best optimization is the one you don't write. Upgrading to .NET 10 delivers throughput gains purely through runtime improvements. Get a "free" boost by updating the package.

Learn More: duende.link/bpicb

#aspnet #dotnet

Identity is hard. Building it alone is harder. 🤝

Join our private Insiders Discord to talk BFF, Passkeys, and OpenTelemetry with the Duende team and senior devs worldwide. A no-fluff zone for mission-critical systems.

Apply: duende.link/insiders

Duende Product Insiders We invite you to join a deeply technical, standards-driven community to help shape the future of .NET security and identity.

The Duende Product Insiders program is our dedicated listening channel. We share early design documents and prototypes with the Duende Insiders to get honest and impactful feedback.

Help us build the solutions that empowers you and your peers.

Apply here: duende.link/insiders

Application Modernization Future-proof your apps with Duende's identity modernization. Get better security and control while preserving your existing identity logic.

Licensing isn't just legal paperwork; it’s a safety net for your team. Knowing that Duende engineers are maintaining the Identity SDK allows you to focus on what you love building.

We carry the weight of standards and compliance so you don't have to: duende.link/appmodb

#aspnet #dotnet

- YouTube Enjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube.

Content Security Policy (CSP) helps against cross-site scripting attacks! 🥷

Learn how this powerful HTTP header is your next line of defense. We break down the directives and show you how to implement them.

Watch here: youtu.be/B0Rz_qiQAWo #dotnet #securitytips

Duende Product Insiders We invite you to join a deeply technical, standards-driven community to help shape the future of .NET security and identity.

Standards evolve because people participate. Insiders help shape the roadmap. When we prototype new features, we ask the community how they fit real-world architectures.

Apply: duende.link/insiders

#aspnet #dotnet

Application Modernization Future-proof your apps with Duende's identity modernization. Get better security and control while preserving your existing identity logic.

Nothing is more frustrating than a tool that fights you. We respect your expertise. Our architecture gives you the control to build exactly what you need, without the black-box limitations that make work a headache.

We empower the security architect.

Learn more 👉️ duende.link/appmodb

#aspnet

Null exceptions are costly. We are enforcing strict Nullable Reference Types across the IdentityServer API in .NET 10. The compiler catches bugs before you deploy.

The community deserves rigorous design.

Learn More: duende.link/bpicb

#aspnet #dotnet

Rate Limiting IdentityServer Endpoints Learn why rate limiting Duende IdentityServer endpoints is usually unnecessary, and when you do need it. Explore a layered approach using network proxies, ASP.NET Core middleware, and custom…

Should you add rate limiting to your Duende IdentityServer deployment? 🤔

Our new article breaks down the why (and why not), plus 3 implementation options.

Read the full article 👉 duende.link/87wrkjh

#dotnet #ASPNETCore #OAuth #OpenIDConnect

Livestream: Are your access tokens really secure? Are your APIs vulnerable? Explore JWT pitfalls, learn to prevent exploits, and compare JWTs vs. opaque tokens in this expert-led session.

The livestream starts NOW! 🔴 Security you can’t prove isn’t security, it’s hope.

Stop relying on manual checks. We’re showing you how to automate your security testing to ensure your API only accepts your trusted tokens.

🔗 Join us now: duende.link/lsjwt26b

#OAuth2 #JWT #DotNet

Livestream: Are your access tokens really secure? Are your APIs vulnerable? Explore JWT pitfalls, learn to prevent exploits, and compare JWTs vs. opaque tokens in this expert-led session.

Join our livestream in 1 HOUR! 📣 JWTs are the industry standard, but are they right for your specific architecture?

We’re breaking down the strategic trade-offs between JWTs vs. Opaque Tokens.

Be there: duende.link/lsjwt26b

#OAuth2 #JWT #DotNet

.NET 10 performance benefits everyone. By optimizing IdentityServer for the new runtime, we pass those gains down to every application that relies on us.

Reduced CPU cycles in auth mean lower cloud bills for the entire community.

Learn more: duende.link/bpicb

#aspnet #aspnetcore #dotnet

Livestream: Are your access tokens really secure? Are your APIs vulnerable? Explore JWT pitfalls, learn to prevent exploits, and compare JWTs vs. opaque tokens in this expert-led session.

Tomorrow! Join our livestream on March 3rd.

Stop relying on manual checks. We’re showing you how to automate your security testing to ensure your API only accepts your trusted tokens.

🔗 March 3rd. Be there: duende.link/lsjwt26b

#OAuth2 #JWT #DotNet

Duende IdentityServer v7.4 is now available Duende IdentityServer v7.4 is here! Full compatibility with .NET 10 LTS, plus a standards-based foundation for agentic AI systems and MCP.

Stability is a community asset. Aligning with the Microsoft LTS schedule provides a shared timeline for the industry. We can all plan, budget, and coordinate releases together.

Predictability helps the whole community function better.

Learn More: duende.link/is74b0b

#aspnet #dotnet #LTS

Livestream: Are your access tokens really secure? Are your APIs vulnerable? Explore JWT pitfalls, learn to prevent exploits, and compare JWTs vs. opaque tokens in this expert-led session.

JWTs are the industry standard, but are they right for your specific architecture?
We’re breaking down the strategic trade-offs between JWTs vs. Opaque Tokens.

🔗 March 3rd. Be there: duende.link/lsjwt26b

#OAuth2 #JWT #DotNet

Security Lingo Explained: JWT JWT (JSON Web Token) is an internet standard data format and an essential element of OAuth 2.0 and OpenID Connect.

Expand your security lingo with our latest article on JWT (JSON Web Token), pronounced "jot"! 🍪

Learn what a JWT is, and its role in OAuth 2.0/OpenID Connect: duende.link/q2nage

#dotnet #securitylingo

The Big Picture An overview of modern application architecture patterns and how OpenID Connect and OAuth 2.0 protocols implemented by IdentityServer solve authentication and API access challenges

Stability is a community asset. Aligning with the Microsoft LTS schedule provides a shared timeline for the industry. We can all plan, budget, and coordinate releases together.

Predictability helps the whole community function better.

Learn more: duende.link/bpicb

#aspnet #dotnet #LTS

Duende IdentityServer Overview of Duende IdentityServer framework for OpenID Connect and OAuth 2.x protocols, covering extensibility, security scenarios, licensing, and support.

SaaS providers are black boxes. Duende gives you full source access.

Step-through to understand exactly how it all works. 🔍️

Explore: docs.duendesoftware.com/identityserv...

#aspnet #dotnet

Duende Product Insiders We invite you to join a deeply technical, standards-driven community to help shape the future of .NET security and identity.

Identity is hard. Building it alone is harder. 🤝

Join our private Insiders Discord to talk BFF, Passkeys, and OpenTelemetry with the Duende team and senior devs worldwide. A no-fluff zone for mission-critical systems.

Apply: duende.link/insiders

#IdentityServer #DotNet

Security Lingo Explained: DPoP DPoP (Demonstrating Proof of Possession) uses asymmetric keys to secure OpenID Connect and OAuth against token replay attacks.

DPoP is not shorthand for Danish pop music. 🎶

Instead, Demonstrating Proof of Possession (DPoP) is used to fight back against token replay attacks in OpenID Connect and OAuth.

Security Lingo Explained: duende.link/lgodpop

#SecurityLingo #dotnet

It's Probably DNS - Can You Dig It? How to use the powerful dig utility to quickly diagnose and troubleshoot common DNS issues like incorrect A/AAAA records, CNAME problems, and TTL cache issues for your web applications.

Stop saying "It's probably DNS" when things go south. 🧭

Fix it faster, and learn why the professional networking community favors dig over nslookup for DNS troubleshooting: duende.link/y26224

#dotnet #dns

Livestream: Are your access tokens really secure? Are your APIs vulnerable? Explore JWT pitfalls, learn to prevent exploits, and compare JWTs vs. opaque tokens in this expert-led session.

Should you blindly trust JWTs for accessing APIs? 😟

You’ve got OAuth 2.0 and #JWT's, but a single misconfiguration in your library can leave you wide open. Join Wesley to see why "standard" validation isn't always enough.

🔗 Be there on March 3rd: duende.link/lsjwt26b

#OAuth2 #DotNet

Application Modernization Future-proof your apps with Duende's identity modernization. Get better security and control while preserving your existing identity logic.

Nothing is more frustrating than a tool that fights you. We respect your expertise.

Our architecture gives you the control to build exactly what you need, without the black-box limitations that make work a headache.

We empower the security architect.

Learn More: duende.link/appmodb

#aspnet

Duende IdentityServer v7.4 is now available Duende IdentityServer v7.4 is here! Full compatibility with .NET 10 LTS, plus a standards-based foundation for agentic AI systems and MCP.

#dotnet 10 performance benefits everyone. By optimizing IdentityServer for the new runtime, we pass those gains down to every application that relies on us.

Reduced CPU cycles in auth mean lower cloud bills for the entire community.

Learn more: duende.link/is74b0b

Duende IdentityServer The most flexible and standards-compliant OpenID Connect and OAuth framework for ASP.NET Core.

Don't rely on status pages during an outage. Commercial licenses include priority support. 🤝

Direct assistance from the maintainers is a necessity for mission-critical infra.

#aspnet #dotnet

Learn More:

Stability is a community asset. Aligning with the Microsoft LTS schedule provides a shared timeline for the industry. We can all plan, budget, and coordinate releases together.

Predictability helps the whole community function better. 💪

#aspnet #aspnetcore #dotnet

- YouTube Enjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube.

Cross-Site Scripting (XSS) is one of the most common web attacks! 💥

Learn the 3 types (Reflected, Stored, DOM-based), the main developer mistake, and how to defend your app with #ASPNETCore and proper HTML escaping.

youtu.be/Zqvw6XR9Lug #XSS #WebSecurity #dotnet

BenchmarkDotNet - Open Source Sponsorship Duende Software's latest Open Source Sponsorship goes to BenchmarkDotNet, a benchmarking library for .NET.

Duende Software's latest Open Source Sponsorship goes to #BenchmarkDotNet! 🚀
It's a great project to help analyze (and maintain) performance of #dotnet code.

Check out the full post for details on the project: duende.link/o55bmd