Monthly Archives: February 2026

Add application security to the swiyu generic management verifier APIs using OAuth

February 16, 2026 · by · in .NET Core, ASP.NET Core, aspire, e-id, OAuth2, OpenId, Security, Self Sovereign Identity, Web · 2 Comments

The article looks at implementing security using OAuth for the swiyu Public Beta Trust Infrastructure generic containers. The container provides endpoint for OpenID verification and the management APIs. The OpenID endpoints are publicly accessible using a reverse proxy, the management APIs can only be accessed in the network and using an access token for app […]

Isolate the swiyu Public Beta management APIs using YARP

February 9, 2026 · by · in .NET, .NET Core, ASP.NET Core, e-id, OAuth2, OpenId, Security, Self Sovereign Identity · 8 Comments

This post looks at hardening the security for the swiyu public beta infrastructure. The generic containers provide both management APIs and wallet APIs which support the OpenID for Verifiable Presentations 1.0 specification. The management APIs require both network protection and application security. This post looks at implementing the network isolation. Code: https://github.com/swiss-ssi-group/swiyu-passkeys-idp-loi-loa Blogs in this […]

Use client assertions in ASP.NET Core using OpenID Connect, OAuth DPoP and OAuth PAR

February 2, 2026 · by · in .NET, .NET Core, ASP.NET Core, aspire, dotnet, e-id, OAuth2, OpenId, Security · 8 Comments

This post looks at implement client assertions in an ASP.NET Core application OpenID Connect client using OAuth Demonstrating Proof of Possession (DPoP) and OAuth Pushed Authorization Requests (PAR). Code: https://github.com/swiss-ssi-group/swiyu-passkeys-idp-loi-loa Blogs in this series: Setup An ASP.NET code application is setup to authentication using OpenID Connect and OAuth PAR. The web application is an OIDC […]