Category aspire

Add application security to the swiyu generic management verifier APIs using OAuth

February 16, 2026 · by · in .NET Core, ASP.NET Core, aspire, e-id, OAuth2, OpenId, Security, Self Sovereign Identity, Web · 2 Comments

The article looks at implementing security using OAuth for the swiyu Public Beta Trust Infrastructure generic containers. The container provides endpoint for OpenID verification and the management APIs. The OpenID endpoints are publicly accessible using a reverse proxy, the management APIs can only be accessed in the network and using an access token for app […]

Use client assertions in ASP.NET Core using OpenID Connect, OAuth DPoP and OAuth PAR

February 2, 2026 · by · in .NET, .NET Core, ASP.NET Core, aspire, dotnet, e-id, OAuth2, OpenId, Security · 8 Comments

This post looks at implement client assertions in an ASP.NET Core application OpenID Connect client using OAuth Demonstrating Proof of Possession (DPoP) and OAuth Pushed Authorization Requests (PAR). Code: https://github.com/swiss-ssi-group/swiyu-passkeys-idp-loi-loa Blogs in this series: Setup An ASP.NET code application is setup to authentication using OpenID Connect and OAuth PAR. The web application is an OIDC […]

Implementing Level of Authentication (LoA) with ASP.NET Core Identity and Duende

January 12, 2026 · by · in .NET Core, ASP.NET Core, aspire, e-id, OAuth2, OpenId, Security, Self Sovereign Identity · 8 Comments

This post shows how to implement an application which requires a user to authenticate using passkeys. The identity provider returns three claims to prove the authentication level (loa), the identity level, (loi) and the amr claim showing the used authentication method. Code: https://github.com/swiss-ssi-group/swiyu-passkeys-idp-loi-loa Blogs in this series: The amr claim and the loa claim returns […]

Use swiyu, the Swiss E-ID to authenticate users with Duende and .NET Aspire

October 27, 2025 · by · in .NET, .NET Core, ASP.NET Core, aspire, e-id, OAuth2, OpenId, Security, Self Sovereign Identity, Uncategorized · 3 Comments

This post shows how to authenticate users using Duende IdentityServer and ASP.NET Core Identity which verifies identities (verifiable digital credentials) using the Swiss Digital identity and trust infrastructure (swiyu). The swiyu infrastructure is implemented using the provided generic containers which implement the OpenID for Verifiable Presentations standards as well as many other standards for implementing […]

Issue and verify credentials using the Swiss Digital identity public beta, ASP.NET Core and .NET Aspire

August 4, 2025 · by · in ASP.NET Core, aspire, e-id, OAuth2, OpenId, Security, Self Sovereign Identity · 6 Comments

This post shows how to issue and verify identities (verifiable credentials) using the Swiss Digital identity and trust infrastructure, (swiyu), ASP.NET Core and .NET Aspire. The swiyu infrastructure is implemented using the provided generic containers which implement the OpenID for Verifiable Credential Issuance and the OpenID for Verifiable Presentations standards as well as many other […]