Just did a big rewrite of a docs page on dynamic identity providers in Duende #identityserver.

That was fun to dive in, and makes me appreciate the thought put in to designing both #aspnetcore and IdentityServer itself.

https://docs.duendesoftware.com/identityserver/ui/login/dynamicproviders/

#dotnet #security #oauth

(also big thanks to @khalidabuhakmeh for the fantastic preview images on new docs pages)

Dynamic Providers

Documentation for IdentityServer's Dynamic Identity Providers feature, which enables configuring external authentication providers from a store at runtime without performance penalties or application recompilation.

Duende Software Docs

Let's try GitHub discussions... Who's still on IdentityServer 4, and why? #dotnet #identityserver

https://github.com/orgs/DuendeSoftware/discussions/36

Who's still on IdentityServer 4, and why? ยท DuendeSoftware ยท Discussion #36

When looking at NuGet, I noticed IdentityServer 4 still has many downloads. Which makes me curious: who's still on IdentityServer 4, and why? Is it because your solution is locked on an older .NET ...

GitHub
Working on a #IdentityServer sample that implements server-side sessions with a backchannel logout, and got reminded #JetBrainsRider is pretty amazing as it decodes a JWT token while debugging without needing external tools. #dotnet #identity

๐Ÿš€ Wrapping up my Duende IdentityServer + Docker series!

๐Ÿ”‘ Fixing sign-out
๐Ÿ”‘ Using ID tokens for safe session handling
๐Ÿ”‘ The id_token_hint

https://nestenius.se/net/identityserver-in-docker-containers-part-4/

#IdentityServer #Authentication #ASPNetCore

IdentityServer In Docker Containers โ€“ Handle Logout (Part 4)

Final part in the series on containerizing IdentityServer, fixing logout challenges, and finalizing the IdentityServer setup.

Personal Blog of Tore Nestenius | Insights on .NET, C#, and Software Development

๐Ÿ”’ Secure your IdentityServer with HTTPS in Docker Compose! ๐Ÿš€

In part 3 of my series, I show you how to:
โœ… Fix cookie restrictions blocking auth
โœ… Use self-signed certs for HTTPS
โœ… Configure Docker Compose + Kestrel for secure endpoints

Code & guide here ๐Ÿ‘‰

https://nestenius.se/net/identityserver-in-docker-containers-part-3/

#IdentityServer #dotnet #ASPNetCore #docker

IdentityServer in Docker Containers: HTTPS and SameSite (Part 3)

Fix IdentityServer login issues caused by cookie restrictions. Learn to secure containers with HTTPS in Docker and adjust cookie settings...

Personal Blog of Tore Nestenius | Insights on .NET, C#, and Software Development

Struggling to containerize Duende IdentityServer? ๐Ÿณ

Part 2 of my series tackles a key challenge: making IdentityServer and client apps work in Docker!

Read more at:
https://nestenius.se/net/identityserver-in-docker-containers-part-2/

#identityServer #aspnetcore #dotnet #openidconnect

IdentityServer in Docker Containers: Networking (Part 2)

Part 2 in the series on containerizing IdentityServer tackles networking challenges. Learn to resolve back-channel issues and more.

Personal Blog of Tore Nestenius | Insights on .NET, C#, and Software Development

Struggling to containerize Duende IdentityServer with Docker? ๐Ÿšข

Iโ€™ve written a step-by-step guide to:
โœ… Set up IdentityServer in containers
โœ… Solve localhost issues
โœ… Code examples

๐Ÿ”— https://nestenius.se/net/identityserver-in-docker-containers-part-1

#identityserver #oidc #dotnet #aspnetcore

IdentityServer in Docker Containers - Part 1

Learn how to set up Duende IdentityServer and a client application in Docker containers. This step-by-step guide addresses common pitfalls.

Personal Blog of Tore Nestenius | Insights on .NET, C#, and Software Development
How to Fix "SqlException: Incorrect syntax near '$'." in Duende IdentityServer 7 - Improve & Repeat

There are only few less helpful error messages than Incorrect syntax near '$'. In my case the problem is a breaking change in EF Core 8.

Improve & Repeat
Improve ASP.NET Core authentication using OAuth PAR and OpenID Connect

This article shows how an ASP.NET Core application can be authenticated using OpenID Connect and OAuth 2.0 Pushed Authorization Requests (PAR) RFC 9126. The OpenID Connect server is implemented usiโ€ฆ

Software Engineering

I want to use a separate ASP.Net Identity Server (.Net 7) to secure my Blazor WASM app (I use Azure AD B2C but want to admit to run an "offline" mode on my laptop).

The .Net template has the Blazor WASM app and the Identity Server as the same ASP.Net app.

My preference is to use the `CascadingAuthenticationState` Blazor component, but I'm not sure how to configure the authorisation via `AddApiAuthorization()`.

Any ideas?

FYI @carlfranklin

#dotnet #blazor #identityserver