@damienbod

364 Followers
305 Following
224 Posts
web developer, Microsoft MVP #aspnetcore #openid #oauth2 #security #dotnet #azure #identity #angular #fido2 #iam #ssi
githubhttps://github.com/damienbod
bloghttps://damienbod.com
linkedInhttps://www.linkedin.com/in/damien-bowden-42a450176/
damienbod4d ago

Really looking forward to the .NET day 2025 in Zurich this Tuesday. I will be talking about: Modern Web Applications Require Modern Security

https://www.dotnetday.ch/speakers/damien-bowden.html

Security is so exciting at present with so many new problems to solve. Looking forward to chatting with everyone. Come say hello of you are there.

#openid #oauth #owasp #iam #identity #passkeys #mfa #openidconnect #devSecOps #eid #swiyu #mcpoauth #trust #sast #sbom .NET Day Switzerland

Damien Bowden @ .NET Day Switzerland

.NET Day - The community event in Switzerland

damienbod5d ago
Khalid K-1000 🤖5d ago

Hey #dotnet folks and #security wonks, join our #livestream today to learn about FAPI 2.0 and how to enhance security at your organization with the latest specification.

Also, drop in and say hello, and give us a like and subscribe. :)

🙏 Boosts are appreciated.

https://www.youtube.com/watch?v=pm63FWDZE6M

Launch Event: Duende IdentityServer v7.3 – FAPI 2.0 & New Quickstart Templates

YouTube
damienbodAug 18

Blogged: Reset Cookies and force new sign-in using ASP.NET Core Identity

https://damienbod.com/2025/08/18/reset-cookies-and-force-new-sign-in-using-asp-net-core-identity/

#aspnetcore #identity #iam #cookie #duende #dotnet #net

Reset Cookies and force new sign-in using ASP.NET Core Identity

This post looks at implementing a cookie reset in an ASP.NET Core application using Duende identity server which federates to Entra ID. Sometimes cookies need to be reset for end users due to size …

Software Engineering
damienbodAug 7

Blogged: Use EdDSA signatures to validate tokens in ASP.NET Core using OpenID Connect

https://damienbod.com/2025/08/06/use-eddsa-signatures-to-validate-tokens-in-asp-net-core-using-openid-connect/

#openid #openidconnect #oidc #identity #eddsa #jwt #security #oauth

Use EdDSA signatures to validate tokens in ASP.NET Core using OpenID Connect

Some identity providers use the EdDSA / ED25519 algorithm to sign and issue tokens. This post shows how to validate the tokens using the Nuget package from ScottBrady and ASP.NET Core. Using the de…

Software Engineering
damienbodAug 4

Blogged: Issuer and verify credentials using the Swiss Digital identity public beta, ASP.NET Core and .NET Aspire

https://damienbod.com/2025/08/04/issuer-and-verify-credentials-using-the-swiss-digital-identity-public-beta-asp-net-core-and-net-aspire/

#aspire #aspnetcore #dotnet #swiyu #e-ID #eid #identity #iam #openid #sd-jwt-vc #vc #did #ssi #OID4VCI #OID4VP

Issuer and verify credentials using the Swiss Digital identity public beta, ASP.NET Core and .NET Aspire

The post shows how to issue and verify identities (verifiable credentials) using the Swiss Digital identity and trust infrastructure, (swiyu), ASP.NET Core and .NET Aspire. The swiyu infrastructure…

Software Engineering
damienbodJul 27

New OSS project: Basic setup to issuer and verify swiyu credentials using the swiyu public beta, ASP.NET Core and Aspire.

https://github.com/swiss-ssi-group/swiyu-aspire-aspnetcore

#aspire #aspnetcore #dotnet #swiyu #e-ID #eid #identity #iam #openid #sd-jwt-vc #vc #did #ssi

damienbodJul 5

Working on something cool:

Swiss swiyu implemented using Aspire and .NET Core

https://swiyuaspiremgmt.delightfulsky-453308fc.switzerlandnorth.azurecontainerapps.io/

I plan to publish the code next month.

#swiyu #eid #aspire #aspnetcore #dotnet #identity #DigitalIdentity #DigitalIdentities #swiss #didas

Swiyu .NET - damienbod

damienbodJul 2

Blogged: Implement ASP.NET Core OpenID Connect with Keycloak to implement Level of Authentication (LoA) requirements

https://damienbod.com/2025/07/02/implement-asp-net-core-openid-connect-with-keykloak-to-implement-level-of-authentication-loa-requirements/

#aspnetcore #dotnet #aspire #keycloak #identity #authentication #loa #iam #identity

Implement ASP.NET Core OpenID Connect with Keycloak to implement Level of Authentication (LoA) requirements

This post looks at implementing an OpenID Connect client in ASP.NET Core and require a level of authentication (LoA) implemented using Keycloak. The applications are hosted using Aspire. The LoA is…

Software Engineering
damienbodJun 12

Using a content security policy with static assets in Blazor .NET 10

https://github.com/damienbod/BlazorSecurityNet10

#blazor #aspnetcore #dotnet #csp #security #owasp

GitHub - damienbod/BlazorSecurityNet10: Blazor .NET 10 CSP with static assets

Blazor .NET 10 CSP with static assets. Contribute to damienbod/BlazorSecurityNet10 development by creating an account on GitHub.

GitHub
damienbodJun 10

Blogged: Experimental alternative flow for OAuth First-Party Applications

https://damienbod.com/2025/06/10/experimental-alternative-flow-for-oauth-first-party-applications/

#oauth #native #dpop #security #duende #identity

Experimental alternative flow for OAuth First-Party Applications

This post looks at an alternative way of implementing a native app authentication and authorization. At present, a web browser is used to implement authentication of native applications when using …

Software Engineering