Explains the OAuth Device Code Flow in Azure AD for authenticating apps without a web browser, including how it works and a C# example.
OpenIddict RC2 released with new features for third-party client support, application permissions, scope validation, and updated introspection endpoint.
A tutorial on implementing a custom HTTP Basic authentication scheme within the ASP.NET Core 2.0 authentication framework.
A tutorial on using Sinon.js to stub Passport authentication middleware and database calls in a Node.js and Koa API for isolated testing.
A sample Windows native OIDC client using a custom URI scheme and named pipes to handle authentication responses from the system browser.
A tutorial on implementing user authentication in a Node.js Koa application using Passport.js, PostgreSQL, and Redis for sessions.
A tutorial on adding custom user claims during authentication in ASP.NET Core 2.0, covering both OpenID Connect and JWT Bearer scenarios.
A guide to applying authorization globally in ASP.NET Core, covering single-policy and multi-policy scenarios using filters and conventions.
Fixes password complexity issues in vRealize Operations 6.6 setup, explaining which special characters are accepted.
Explains Azure AD Managed Service Identity (MSI) for secure authentication without managing secrets in code, with a focus on ASP.NET Core.
Analysis of new NIST password guidelines advocating for longer passphrases over complex, frequently changed passwords.
Two approaches to hide the navigation bar on the login page in an Angular application using Angular Material.
RSiteCatalyst v1.4.13 fixes an OAUTH2 authentication bug reported by a community member. A minor, cumulative update.
A technical guide on creating a Hashicorp Vault authentication token with permissions only to seal the vault, including policy creation and token generation.
Five practical security and usability improvements for the Django Admin interface, including URL changes, environment indicators, and 2FA.
A technical guide on implementing Azure Active Directory authentication in ASP.NET Core 2.0, covering setup and configuration changes.
A guide to creating a custom Ember service for managing a current user's data using JWT authentication with Ember Simple Auth.
Explains why Thread.CurrentPrincipal is not set in ASP.NET Core and provides guidance on handling user identity in the new framework.
A tutorial on implementing JWT-based authentication in an Angular application, covering login, registration, and route protection.
A developer's portfolio of web development, SaaS, and security projects, including tools for email, domains, passwords, and recruiting.
