IdentityServer
SCIM Cursor Pagination
Implementation of the draft-ietf-scim-cursor-pagination-05
Andrew Clymer
- •
- Job Role
- Head of Identity and Access Management
Articles
Latest news and updates in identity and IdentityServer
-
SCIM Cursor Pagination -
FIPS and FIDO2/Passkeys
FIPS and FIDO2/Passkeys
V4.0 of our FIDO2/Passkey component uses a FIPS 140-3 certified cryptographic module.
Andrew Clymer
- •
- Job Role
- Head of Identity and Access Management
-
Moving your AdminUI All-in-one Template into Production
Moving your AdminUI All-in-one Template into Production
Moving your local Single-Sign-On (SSO) solution onto production can be scary, but with this essential configuration, you will be on the right track.
Nacho Escrig
- •
- Job Role
- Software Developer
-
Mitigate Phishing Attacks
Mitigate Phishing Attacks
What is a Phishing attack? What can organizations do to prevent phishing attacks? How does EvilJinx and FIDO come into play?
Kevin Jones
- •
- Job Role
- Consultant
-
Don't Use Claims for Authorization
Don't Use Claims for Authorization
When discussing security, we often divide it into two parts: authentication and authorization. So, what's the difference between the two? When should I be using a claim, and why shouldn't i use it to drive policy?
Kevin Jones
- •
- Job Role
- Consultant
-
Writing Authorization Policy Just Got Easier
Writing Authorization Policy Just Got Easier
Enforcer 3.0 makes it even easier to develop and maintain authorization policy written in ALFA. The 3.0 release enhances the IDE experience, providing tools such as rename, goto definition and find all references
Andrew Clymer
- •
- Job Role
- Head of Identity and Access Management
-
Quick Start Duende IdentityServer SSO with Management Console
Quick Start Duende IdentityServer SSO with Management Console
Do you want to create a Single Sign-On (SSO) solution based on Duende IdentityServer? Do you want a management UI for managing users and IdentityServer configuration? Then look no further; our Duende IdentityServer & AdminUI code template will have you up and running in less than 15 minutes.
Nacho Escrig
- •
- Job Role
- Software Developer
-
Is SMS a Sensible Choice for Password Reset?
Is SMS a Sensible Choice for Password Reset?
At first glance SMS sounds like a reasonable technology for password reset. However, it's far from it.
Andrew Clymer
- •
- Job Role
- Head of Identity and Access Management
-
The Dangers of Considering Email as Two-Factor Authentication
The Dangers of Considering Email as Two-Factor Authentication
It is important to consider the potential risks associated with using email as a form of two-factor authentication. It may be worth exploring alternative options that offer increased security.
Paul Brummitt
- •
- Job Role
- Software Developer
-
Using Dynamic Authentication Providers feature in Duende IdentityServer with AdminUI
Using Dynamic Authentication Providers feature in Duende IdentityServer with AdminUI
Discover the Dynamic Authentication Providers feature for AdminUI, including its functionality and a video demonstration.
Kieran Odinius
- •
- Job Role
- Business Development
-
AdminUI as a Framework
AdminUI as a Framework
Since its inception, AdminUI has been an application requiring no development effort to get it running. However, it is not as flexible as some of our customers require. So let's fix that!
Andrew Clymer
- •
- Job Role
- Head of Identity and Access Management
-
We Are Officially B Corp Certified!
We Are Officially B Corp Certified!
As of January 2023, Rock Solid Knowledge is proud to announce that we are a Certified B -Corporation™. B Corp questions assess every aspect of your organisation - from the environment to governance to how we treat our workers and customers.
Kieran Odinius
- •
- Job Role
- Business Development
-
Implementing CIBA in Duende IdentityServer
Implementing CIBA in Duende IdentityServer
Client-Initiated Backchannel Authentication (CIBA) is a new OpenID Connect specification that describes decoupled authentication flows. This article describes how to implement a CIBA flow inside Duende IdentityServer.
Ben Archer
- •
- Job Role
- Software Developer
-
IdentityServer4 End-of-life (EOL) - What Next?
IdentityServer4 End-of-life (EOL) - What Next?
IdentityServer4 will no longer be supported from 13th December 2022. We outline our product-specific support and migration steps to Duende IdentityServer
Kieran Odinius
- •
- Job Role
- Business Development
-
WS-Federation Integration with Duende IdentityServer
WS-Federation Integration with Duende IdentityServer
Are you looking to support WS-Federation clients into your IdentityServer? If so, this tutorial will help you implement a cross-protocol SSO.
Sundas Choudry
- •
- Job Role
- Software Developer
-
AdminUI 6.3 Release Notes
AdminUI 6.3 Release Notes
AdminUI now supports custom identity implementations for users with their own identity schemas or extensions of the ASP.NET Identity schema.
Sam Brinsden
- •
- Job Role
- Software Developer
-
What is Risk Based Authentication
What is Risk Based Authentication
Creating a secure login experience that defends against password stuffing and spraying can lead to an unpleasant user experience. Using Risk-Based Authentication allows you to adapt the login experience based on the current threat level, resulting in a secure and, more often than not, pleasant user experience.
Andrew Clymer
- •
- Job Role
- Head of Identity and Access Management
-
Efficient Cleaning Up of the Persisted Grant Table
Efficient Cleaning Up of the Persisted Grant Table
IdentityServer uses a persisted grants table to store reference and refresh tokens. Clean-up code needs to be run periodically to remove expired tokens. The built-in functionality works for small/medium usage, but alternative approaches should be considered for high usage. This article outlines an alternative approach using a SQL stored procedure.
Andrew Clymer
- •
- Job Role
- Head of Identity and Access Management
-
SAML 2.0 Integration with Duende IdentityServer
SAML 2.0 Integration with Duende IdentityServer
Are you looking to support SAML clients or external SAML identity providers in your IdentityServer? If so, this tutorial will help you implement a cross-protocol SSO.
Sundas Choudry
- •
- Job Role
- Software Developer
-
Announcing New AdminUI licensing
Announcing New AdminUI licensing
To align AdminUI and Duende IdentityServer licensing, newly purchased copies of AdminUI come with a lower cost annual license
Kieran Odinius
- •
- Job Role
- Business Development
-
Open Banking for OAuth Developers
Open Banking for OAuth Developers
This article will build upon your existing OAuth knowledge to learn about Open Banking’s architecture, its new acronyms, and what implementation is the best fit for you.
Scott Brady
- •
- Job Role
- Security Consultant
-
Rsk.Saml v5: Release Notes
Rsk.Saml v5: Release Notes
Rsk.Saml v5 includes new features, improvements and breaking changes. Such as support for .NET 6, Duende IdentityServer v6 and HTTP Artifact binding.
Sundas Choudry
- •
- Job Role
- Software Developer
-
Duende IdentityServer v6 Product Releases
Duende IdentityServer v6 Product Releases
Duende IdentityServer (IDS) 6 was released earlier this year – our products continue to support the framework in its latest update.
Kieran Odinius
- •
- Job Role
- Business Development
-
Improving SAML SSO Security Using HTTP Artifact Binding
Improving SAML SSO Security Using HTTP Artifact Binding
SAML implementations typically exchange sensitive user data via the browser. This considerably increases the attack surface of your Single Sign-On (SSO) solution. Luckily, SAML offers an alternative mechanism called HTTP Artifact binding that allows protocol messages to be transported more securely.
Sundas Choudry
- •
- Job Role
- Software Developer
