Monthly Archives: February 2025

Use client assertions in OpenID Connect and ASP.NET Core

February 24, 2025 · by · in .NET, .NET Core, ASP.NET Core, OAuth2, Security · 3 Comments

Client assertions is a method of client authentication which can be used in OpenID Connect. This provides an alternative to client secrets. This approach enhances security by using signed tokens (JWTs) to authenticate clients during the token request process or the OAuth PAR request. In ASP.NET Core, client assertions is not supported per default, a […]

Customizing a single client sign-in using parameters in Duende IdentityServer

February 17, 2025 · by · in .NET, .NET Core, ASP.NET Core, dotnet, OAuth2, Security · 2 Comments

This post looks at customizing the sign-in UI and the sign-in options in an ASP.NET Core application using Duende IdentityServer and ASP.NET Core Identity. There are multiple ways of changing the look and feel of the UI for different OpenID Connect clients or different client flows. In the previous post, the UI was customized per […]

ASP.NET Core delegated OAuth Token Exchange access token management

February 10, 2025 · by · in .NET Core, ASP.NET Core, OAuth2, Security · 3 Comments

This blog shows how to implement a delegated OAuth 2.0 Token Exchange RFC 8693 flow in ASP.NET Core, and has a focus on access token management. It looks at how the OAuth Token Exchange can be implemented and how an application can request delegated access tokens on behalf of a user and another application, providing […]

Multiple client sign-in customizations using Duende identity provider

February 3, 2025 · by · in Uncategorized · 2 Comments

This post looks at customizing the sign-in UI and the sign-in options in an ASP.NET Core application using Duende IdentityServer and ASP.NET Core Identity. There are multiple ways of changing the look and feel of the UI for different OpenID Connect clients or different client flows. Code: https://github.com/damienbod/duende-multi-tenant Blogs in the series Setup The solution […]