Kévin Chalet is a Microsoft MVP and .NET security expert based in France, best known for OpenIddict, focusing on OpenID Connect, OAuth 2.0, ASP.NET Core, and modern authentication systems.
20 articles from this blog
Announcing the new OpenIddict client library for .NET, designed to provide a unified OAuth 2.0/OpenID Connect experience across different application types.
Analysis of Microsoft's decision to use Duende IdentityServer in .NET 6 templates and the push towards cloud authentication services like Azure AD.
OpenIddict 3.0, a .NET OpenID Connect server and validation library, is now generally available with a rewritten, event-oriented architecture.
OpenIddict 3.0 RC1 released, focusing on bug fixes and removing error description localization to comply with OAuth 2.0 specs.
OpenIddict 3.0 beta6 introduces explicit response type permissions, replacing the old inferred system, and removes the hybrid client type.
Explores using OrchardCore's OpenID management feature as an alternative to IdentityServer, focusing on integration with an existing OpenIddict deployment.
OpenIddict 3.0 beta4 adds Quartz.NET integration for database cleanup and support for 12 languages.
OpenIddict 3.0 beta3 adds localization support, nullable reference types, and improvements to refresh token handling for multilingual .NET projects.
OpenIddict 3.0 beta2 release notes: removed System.Linq.Async dependency and MongoDB auto-initialization for performance.
Announcing OpenIddict 3.0 beta1, a major rewrite of the OpenID Connect server and validation library for .NET with new features and broader framework support.
A guide on integrating OpenIddict 3.0 into an OWIN/Katana application, covering dependency injection setup for ASP.NET 4.x.
Explains how to use OpenIddict 3.0's degraded mode to create a minimalist OpenID Connect proxy server for delegating authentication.
Guide to enabling TLS 1.2 support in legacy .NET applications without recompilation, using configuration file updates.
OpenIddict 1.0 and 2.0 are now officially released, featuring a security fix, built-in entity caching, and an updated event model.
A developer details troubleshooting Windows Media Center on Windows 10, explaining DLL Hell and a COM-based workaround for a broken system component.
Analysis of a session fixation vulnerability in Auth0's ASP.NET and OWIN SDKs, its impact, and the migration path to a secure alternative.
Explains how to use the new OpenIddict RC3 events model to implement advanced OAuth/OpenID Connect scenarios in your applications.
OpenIddict RC3 release introduces revamped registration APIs, specialized service builders, and a new validation handler for ASP.NET Core.
Announcing the RTM release of aspnet-contrib OAuth 2.0/OpenID 2.0 social providers for ASP.NET Core 1.x and 2.x, with a list of available packages.
OpenIddict RC2 released with new features for third-party client support, application permissions, scope validation, and updated introspection endpoint.
