@damienbod

364 Followers
304 Following
253 Posts
web developer, Microsoft MVP #aspnetcore #openid #oauth2 #security #dotnet #azure #identity #angular #fido2 #iam #ssi
githubhttps://github.com/damienbod
bloghttps://damienbod.com
linkedInhttps://www.linkedin.com/in/damien-bowden-42a450176/
damienbodMar 9

Blogged: Invite Guest users in a Entra ID Multi-tenant setup

https://damienbod.com/2026/03/09/invite-guest-users-in-a-entra-id-multi-tenant-setup/

#graph #entra #mau #identity #iam #entraid #oauth #openidconnect #oidc #security

Invite Guest users in a Entra ID Multi-tenant setup

This post looks at implementing a guest user invite in a cross tenant setup. This is useful when creating partner tenants using an Entra ID MAU license for all partner guests and members. This make…

Software Engineering
damienbodFeb 24

Updated: OpenIddict examples using BFF with Angular and Vue.js

https://github.com/damienbod/bff-openiddict-aspnetcore-angular

https://github.com/damienbod/bff-aspnetcore-oidc-vuejs

Support for passkeys.

#aspnetcore #dotnet #angular #vuejs #bff #openiddict #openidconnect #oidc #passkeys

damienbodFeb 24

Updated: OpenIddict with Angular and Blazor WASM BFF OpenID Connect Code Flow with PKCE clients and ASP.NET Core APIs

https://github.com/damienbod/AspNetCoreOpenIddict

#openiddict #passkeys #openid #oauth #grpc #angular #net10 #dotnet

GitHub - damienbod/AspNetCoreOpenIddict: OpenIddict with Angular and Blazor WASM BFF OpenID Connect Code Flow with PKCE clients and ASP.NET Core APIs

OpenIddict with Angular and Blazor WASM BFF OpenID Connect Code Flow with PKCE clients and ASP.NET Core APIs - GitHub - damienbod/AspNetCoreOpenIddict: OpenIddict with Angular and Blazor WASM BFF ...

GitHub
damienbodFeb 16

Blogged: Add application security to the swiyu generic management verifier APIs using OAuth

https://damienbod.com/2026/02/16/add-application-security-to-the-swiyu-generic-management-verifier-apis-using-oauth/

#aspnetcore #oauth #swiyu #swiss #openid #yarp #aspire #container #api #iam #security #dotnet

Add application security to the swiyu generic management verifier APIs using OAuth

The article looks at implementing security using OAuth for the swiyu Public Beta Trust Infrastructure generic containers. The container provides endpoint for OpenID verification and the management …

Software Engineering
damienbodFeb 9

Blogged: Secure the swiyu container using a YARP proxy

https://damienbod.com/2026/02/09/isolate-the-swiyu-public-beta-management-apis-using-yarp/

#swiyu #yarp #aspire #aspnetcore #dotnet #identity #network #oauth #openidconnect #oidc

Isolate the swiyu Public Beta management APIs using YARP

This post looks at hardening the security for the swiyu public beta infrastructure. The generic containers provide both management APIs and wallet APIs which support the OpenID for Verifiable Prese…

Software Engineering
damienbodFeb 2

Blogged: Use client assertions in ASP.NET Core using OpenID Connect, OAuth DPoP and OAuth PAR

https://damienbod.com/2026/02/02/use-client-assertions-in-asp-net-core-using-openid-connect-oauth-dpop-and-oauth-par/

#dotnet #aspnetcode #oidc #oauth #par #dpop #identity #duende #aspire #oss #iam #swiyu

Use client assertions in ASP.NET Core using OpenID Connect, OAuth DPoP and OAuth PAR

This post looks at implement client assertions in an ASP.NET Core application OpenID Connect client using OAuth Demonstrating Proof of Possession (DPoP) and OAuth Pushed Authorization Requests (PAR…

Software Engineering
damienbodFeb 1

Awesome .NET, Swiss Identity event in Zurich on Thursday 5th February

We have a super lineup, great topics and great speakers. It would be great to see you there. All are welcome.

https://www.meetup.com/dotnet-zurich/events/312650604

#dotnet #swiss #zurich #iam #identity #iam #mcp #oss #community

February DOTNET Zurich @isolutions, Thu, Feb 5, 2026, 6:00 PM | Meetup

**5th February - DotNet Zurich @ Isolutions** *Join us in person at Isolutions!!* This event will happen at Isolutions, The Circle. **Agenda:** * 17:45 Reception open &

Meetup
damienbodJan 26

Blogged: Force step up authentication in web applications

https://damienbod.com/2026/01/26/force-step-up-authentication-in-web-applications/

#aspnetcore #dotnet #blazor #aspire #identity #oauth #oidc #duende #iam #swiyu #eid

Force step up authentication in web applications

The post shows how to implement a step up authorization using the OAuth 2.0 Step Up Authentication Challenge Protocol RFC 9470. The application uses ASP.NET Core to implement the API, the web appli…

Software Engineering
damienbodJan 19

Blogged: Implementing Level of Identification (LoI) with ASP.NET Core Identity and Duende

https://damienbod.com/2026/01/18/implementing-level-of-identification-loi-with-asp-net-core-identity-and-duende/

#aspnetcore #oauth #openid #dotnet #oidc #iam #swiyu #aspire #oss #identity #eid #swiss #bit #gov #loi #loa #blazor #duende

Implementing Level of Identification (LoI) with ASP.NET Core Identity and Duende

This article explores how to implement Level of Identification (LOI) in an ASP.NET Core application. The solution uses Duende IdentityServer as the OpenID Connect provider and ASP.NET Core Identity…

Software Engineering
damienbodJan 12

Blogged: Implementing Level of Authentication (LoA) with ASP.NET Core Identity and Duende

https://damienbod.com/2026/01/12/implementing-level-of-authentication-loa-with-asp-net-core-identity-and-duende/

#aspnetcore #dotnet #identity #duende #authentication #loa #passkeys #iam #acr #amr

Implementing Level of Authentication (LoA) with ASP.NET Core Identity and Duende

This post shows how to implement an application which requires a user to authenticate using passkeys. The identity provider returns three claims to prove the authentication level (loa), the identit…

Software Engineering