Debugging ASP.NET Core OAuth authentication in GitHub Codespaces, including reserved path conflicts and callback URL issues.
A technical guide on migrating existing social media user accounts (like Google) to Azure AD B2C using Microsoft Graph API and a .NET application.
A guide to implementing the OAuth 2.0 PKCE authorization flow for secure access in single-page and mobile applications.
Explains the differences between cookies and tokens for API authentication, covering OAuth, JWT, and deployment considerations.
OpenIddict 3.0 RC1 released, focusing on bug fixes and removing error description localization to comply with OAuth 2.0 specs.
Explores using OrchardCore's OpenID management feature as an alternative to IdentityServer, focusing on integration with an existing OpenIddict deployment.
Exploring client-side certificates as a simpler, more secure alternative to OAuth for API authentication.
A developer's guide to implementing Sign-in with Apple, focusing on challenges with one-time profile data and security considerations.
Explains how to use OpenIddict 3.0's degraded mode to create a minimalist OpenID Connect proxy server for delegating authentication.
Developer updates on new projects: a secure key-value store, SourceHut SSO improvements, and PinePhone/Sway Mobile development.
Azure AD now blocks cross-tenant token attacks by preventing apps from getting tokens for tenants where they have no service principal.
Explains how the Azure CLI securely stores and manages OAuth access tokens locally to authenticate users between command executions.
Explains the OAuth Resource Owner Password Credentials (ROPC) grant flow in Azure AD, detailing its purpose and why it should be avoided in modern applications.
Explains the relationship between scopes and claims in IdentityServer for OpenID Connect and OAuth 2.0, covering identity and API scope design.
Explains how to implement OAuth and OpenID Connect authentication protocols in a Blazor client-side application.
Explains the impact of Safari's stricter same-site cookie policy on ASP.NET Core external authentication and proposes a solution.
Explains how to use the new OpenIddict RC3 events model to implement advanced OAuth/OpenID Connect scenarios in your applications.
Explains how to implement an opt-in calendar feature for an Azure AD v1 app by creating a separate app to manage delegated permissions.
Explains the OAuth Device Code Flow in Azure AD for authenticating apps without a web browser, including how it works and a C# example.
A tutorial on implementing Azure Active Directory authentication in an ASP.NET Core 1.0 web application.
