Damien Bowden
@damienbod.com
Web developer. application security consultant, Microsoft MVP #aspnetcore #openid #oauth2 #security #dotnet #azure #identity #angular #fido2 #passkeys #iam #graph #ssi #m365 #entraid #iam
Blogged: Digital Authentication and Identity validation
damienbod.com/2025/12/20/d...
#oidc #identity #iam #swiyu #eid #oauth #dpop #openid #security #ecollecting #authentication #loa #loi #vc #oauth2 #swiss #ch #cybersecurity
damienbod.com/2025/12/20/d...
#oidc #identity #iam #swiyu #eid #oauth #dpop #openid #security #ecollecting #authentication #loa #loi #vc #oauth2 #swiss #ch #cybersecurity
December 20, 2025 at 11:36 AM
Blogged: Digital Authentication and Identity validation
damienbod.com/2025/12/20/d...
#oidc #identity #iam #swiyu #eid #oauth #dpop #openid #security #ecollecting #authentication #loa #loi #vc #oauth2 #swiss #ch #cybersecurity
damienbod.com/2025/12/20/d...
#oidc #identity #iam #swiyu #eid #oauth #dpop #openid #security #ecollecting #authentication #loa #loi #vc #oauth2 #swiss #ch #cybersecurity
Reposted by Damien Bowden
Reposted by Damien Bowden
Big news in #AppSec: the #OWASP Top 10 2025 is now available! I'm part of the project team and ALL OF US want every dev, security engineer, and leader to read it (please).
https://twp.ai/E6ClNO
1/5
https://twp.ai/E6ClNO
1/5
December 12, 2025 at 6:50 PM
Big news in #AppSec: the #OWASP Top 10 2025 is now available! I'm part of the project team and ALL OF US want every dev, security engineer, and leader to read it (please).
https://twp.ai/E6ClNO
1/5
https://twp.ai/E6ClNO
1/5
Reposted by Damien Bowden
Blogged: [Headache Prevention] Workaround for the error "Could not authenticate user with requested resource" when accessing the Aspire dashboard
#azure #dotnet #aspire #dashboard
#azure #dotnet #aspire #dashboard
[Headache Prevention] Workaround for the error “Could not authenticate user with requested resource” when accessing the Aspire dashboard
Recently, I deployed a .NET Aspire solution to Azure Container Apps (via Azure Container registry). The Azure Container Apps resource is running within my personal Azure tenant. In my personal tenant, my user is assigned as Owner of the corresponding resource group and therefore also Owner (by inheritance) of the Container Apps Environment which resides within the same resource group. Furthermore, my user has Azure built-in role…
blog.rufer.be
December 11, 2025 at 3:12 PM
Blogged: [Headache Prevention] Workaround for the error "Could not authenticate user with requested resource" when accessing the Aspire dashboard
#azure #dotnet #aspire #dashboard
#azure #dotnet #aspire #dashboard
Reposted by Damien Bowden
Blogged: Trying out the Zed editor on Windows for .NET and Markdown
andrewlock.net/trying-out-t...
In this post I try out Zed on Windows to see if it can replace my VS Code usages for quick edits of .NET projects and writing Markdown documents.
#dotnet
andrewlock.net/trying-out-t...
In this post I try out Zed on Windows to see if it can replace my VS Code usages for quick edits of .NET projects and writing Markdown documents.
#dotnet
Trying out the Zed editor on Windows for .NET and Markdown
In this post I try out Zed on Windows to see if it can replace my VS Code usages for quick edits of .NET projects and writing Markdown documents
andrewlock.net
December 9, 2025 at 6:30 PM
Blogged: Trying out the Zed editor on Windows for .NET and Markdown
andrewlock.net/trying-out-t...
In this post I try out Zed on Windows to see if it can replace my VS Code usages for quick edits of .NET projects and writing Markdown documents.
#dotnet
andrewlock.net/trying-out-t...
In this post I try out Zed on Windows to see if it can replace my VS Code usages for quick edits of .NET projects and writing Markdown documents.
#dotnet
Reposted by Damien Bowden
How to Configure InternalsVisibleTo in the *.csproj File - #dotNet
improveandrepeat.com/2025/12/how-...
improveandrepeat.com/2025/12/how-...
How to Configure InternalsVisibleTo in the *.csproj File - Improve & Repeat
None
improveandrepeat.com
December 9, 2025 at 7:56 PM
How to Configure InternalsVisibleTo in the *.csproj File - #dotNet
improveandrepeat.com/2025/12/how-...
improveandrepeat.com/2025/12/how-...
Reposted by Damien Bowden
Kind of scary when you think about it: nesbitt.io/2025/12/06/g...
GitHub Actions Has a Package Manager, and It Might Be the Worst
GitHub Actions has a package manager that ignores decades of supply chain security best practices: no lockfile, no integrity verification, no transitive pinning
nesbitt.io
December 9, 2025 at 3:20 AM
Kind of scary when you think about it: nesbitt.io/2025/12/06/g...
Updated .NET 10
Backend for frontend security using Vue.js Typescript, Vite, ASP.NET Core backend and Microsoft Entra ID
github.com/damienbod/bf...
#vuejs #aspnetcore #dotnet #vite #entraid #eid #net10 #typescript
Backend for frontend security using Vue.js Typescript, Vite, ASP.NET Core backend and Microsoft Entra ID
github.com/damienbod/bf...
#vuejs #aspnetcore #dotnet #vite #entraid #eid #net10 #typescript
GitHub - damienbod/bff-aspnetcore-vuejs: Backend for frontend security using Vue.js Typescript, Vite, ASP.NET Core backend and Microsoft Entra ID
Backend for frontend security using Vue.js Typescript, Vite, ASP.NET Core backend and Microsoft Entra ID - damienbod/bff-aspnetcore-vuejs
github.com
December 7, 2025 at 10:52 AM
Updated .NET 10
Backend for frontend security using Vue.js Typescript, Vite, ASP.NET Core backend and Microsoft Entra ID
github.com/damienbod/bf...
#vuejs #aspnetcore #dotnet #vite #entraid #eid #net10 #typescript
Backend for frontend security using Vue.js Typescript, Vite, ASP.NET Core backend and Microsoft Entra ID
github.com/damienbod/bf...
#vuejs #aspnetcore #dotnet #vite #entraid #eid #net10 #typescript
Updated .NET 10 and Angular 21
Auth0 backend for frontend security using Angular CLI and ASP.NET Core backend
github.com/damienbod/bf...
#aspnetcore #dotnet #auth0 #angular #csp #security #bff
Auth0 backend for frontend security using Angular CLI and ASP.NET Core backend
github.com/damienbod/bf...
#aspnetcore #dotnet #auth0 #angular #csp #security #bff
GitHub - damienbod/bff-auth0-aspnetcore-angular: Auth0 Backend for frontend security using Angular CLI and ASP.NET Core backend
Auth0 Backend for frontend security using Angular CLI and ASP.NET Core backend - damienbod/bff-auth0-aspnetcore-angular
github.com
December 7, 2025 at 9:02 AM
Updated .NET 10 and Angular 21
Auth0 backend for frontend security using Angular CLI and ASP.NET Core backend
github.com/damienbod/bf...
#aspnetcore #dotnet #auth0 #angular #csp #security #bff
Auth0 backend for frontend security using Angular CLI and ASP.NET Core backend
github.com/damienbod/bf...
#aspnetcore #dotnet #auth0 #angular #csp #security #bff
Updated .NET 10 and Angular 21
OpenIddict backend for frontend security using Angular CLI and ASP.NET Core backend
github.com/damienbod/bf...
#aspnetcore #dotnet #openiddict #angular #csp #security #bff
OpenIddict backend for frontend security using Angular CLI and ASP.NET Core backend
github.com/damienbod/bf...
#aspnetcore #dotnet #openiddict #angular #csp #security #bff
GitHub - damienbod/bff-openiddict-aspnetcore-angular: OpenIddict backend for frontend security using Angular CLI and ASP.NET Core backend
OpenIddict backend for frontend security using Angular CLI and ASP.NET Core backend - damienbod/bff-openiddict-aspnetcore-angular
github.com
December 7, 2025 at 8:02 AM
Updated .NET 10 and Angular 21
OpenIddict backend for frontend security using Angular CLI and ASP.NET Core backend
github.com/damienbod/bf...
#aspnetcore #dotnet #openiddict #angular #csp #security #bff
OpenIddict backend for frontend security using Angular CLI and ASP.NET Core backend
github.com/damienbod/bf...
#aspnetcore #dotnet #openiddict #angular #csp #security #bff
Reposted by Damien Bowden
This week @damienbod.com and me attended the @owasp.org BeNeLux Days 2025 in Mechelen, Belgium 🇧🇪
There were some super interesting talks we were able to listen to and after the conference we enjoyed the Belgian beer culture 😉
Thanks to Sonar for the invitation!
#owasp #security #conference
There were some super interesting talks we were able to listen to and after the conference we enjoyed the Belgian beer culture 😉
Thanks to Sonar for the invitation!
#owasp #security #conference
December 5, 2025 at 6:54 AM
This week @damienbod.com and me attended the @owasp.org BeNeLux Days 2025 in Mechelen, Belgium 🇧🇪
There were some super interesting talks we were able to listen to and after the conference we enjoyed the Belgian beer culture 😉
Thanks to Sonar for the invitation!
#owasp #security #conference
There were some super interesting talks we were able to listen to and after the conference we enjoyed the Belgian beer culture 😉
Thanks to Sonar for the invitation!
#owasp #security #conference
Reposted by Damien Bowden
Implement forgot your password using swiyu, ASP .NET Core Identity and Aspire by @damienbod.com damienbod.com/2025/11/17/i... #aspnetcore
November 25, 2025 at 9:21 PM
Implement forgot your password using swiyu, ASP .NET Core Identity and Aspire by @damienbod.com damienbod.com/2025/11/17/i... #aspnetcore
Updated to .NET 10: ASP.NET Core Azure Service Bus
github.com/damienbod/As...
#azure #service-bus #events #transactional #security #quese #topic
github.com/damienbod/As...
#azure #service-bus #events #transactional #security #quese #topic
GitHub - damienbod/AspNetCoreServiceBus: ASP.NET Core with Azure Service Bus
ASP.NET Core with Azure Service Bus. Contribute to damienbod/AspNetCoreServiceBus development by creating an account on GitHub.
github.com
November 25, 2025 at 10:08 AM
Updated to .NET 10: ASP.NET Core Azure Service Bus
github.com/damienbod/As...
#azure #service-bus #events #transactional #security #quese #topic
github.com/damienbod/As...
#azure #service-bus #events #transactional #security #quese #topic
Reposted by Damien Bowden
Worked on a good longread: simplify your identity mess!
Learn how a Federation Gateway orchestrates all your IdPs (Entra ID, Google, SAML). Must-read architecture deep dive!
duende.link/8aefizq #IdentityOrchestration #SSO #Security #dotnet
Learn how a Federation Gateway orchestrates all your IdPs (Entra ID, Google, SAML). Must-read architecture deep dive!
duende.link/8aefizq #IdentityOrchestration #SSO #Security #dotnet
Building a Federation Gateway with Duende IdentityServer: Strategies and Considerations for Identity Orchestration
Learn the core benefits of building a federation gateway that brings together Entra ID, Okta, SAML, Auth0 though a centralized authentication provider like DUende IdentityServer.
duende.link
November 24, 2025 at 10:54 AM
Worked on a good longread: simplify your identity mess!
Learn how a Federation Gateway orchestrates all your IdPs (Entra ID, Google, SAML). Must-read architecture deep dive!
duende.link/8aefizq #IdentityOrchestration #SSO #Security #dotnet
Learn how a Federation Gateway orchestrates all your IdPs (Entra ID, Google, SAML). Must-read architecture deep dive!
duende.link/8aefizq #IdentityOrchestration #SSO #Security #dotnet
Updated: Azure Durable Functions and .NET 10
github.com/damienbod/Az...
Now using .NET 10, Azurite, isolated model V4 Functions, github actions
#azure #net10 #dotnet #workflows #saas #functions #business #process #github #keyvault #secrets
github.com/damienbod/Az...
Now using .NET 10, Azurite, isolated model V4 Functions, github actions
#azure #net10 #dotnet #workflows #saas #functions #business #process #github #keyvault #secrets
GitHub - damienbod/AzureDurableFunctions: Use Azure Durable functions for workflows, business processing
Use Azure Durable functions for workflows, business processing - damienbod/AzureDurableFunctions
github.com
November 23, 2025 at 9:35 AM
Updated: Azure Durable Functions and .NET 10
github.com/damienbod/Az...
Now using .NET 10, Azurite, isolated model V4 Functions, github actions
#azure #net10 #dotnet #workflows #saas #functions #business #process #github #keyvault #secrets
github.com/damienbod/Az...
Now using .NET 10, Azurite, isolated model V4 Functions, github actions
#azure #net10 #dotnet #workflows #saas #functions #business #process #github #keyvault #secrets
Reposted by Damien Bowden
Implement MFA using swiyu, the Swiss E-ID with Duende IdentityServer, ASP .NET Core Identity and .NET Aspire by @damienbod.com damienbod.com/2025/11/10/i... #aspnetcore
November 21, 2025 at 9:44 AM
Implement MFA using swiyu, the Swiss E-ID with Duende IdentityServer, ASP .NET Core Identity and .NET Aspire by @damienbod.com damienbod.com/2025/11/10/i... #aspnetcore
Reposted by Damien Bowden
Blogged: Companies complaining .NET moves too fast should just pay for post-EOL support
andrewlock.net/companies-us...
In this post I describe a solution to .NET "releasing too quickly": just pay for support of older versions, such as HeroDevs' Never Ending Support for .NET 6…
#dotnet @hero.dev
andrewlock.net/companies-us...
In this post I describe a solution to .NET "releasing too quickly": just pay for support of older versions, such as HeroDevs' Never Ending Support for .NET 6…
#dotnet @hero.dev
Companies complaining .NET moves too fast should just pay for post-EOL support
In this post I describe a solution to .NET "releasing too quickly": just pay for support of older versions, such as HeroDevs' Never Ending Support for .NET 6
andrewlock.net
November 18, 2025 at 5:53 PM
Blogged: Companies complaining .NET moves too fast should just pay for post-EOL support
andrewlock.net/companies-us...
In this post I describe a solution to .NET "releasing too quickly": just pay for support of older versions, such as HeroDevs' Never Ending Support for .NET 6…
#dotnet @hero.dev
andrewlock.net/companies-us...
In this post I describe a solution to .NET "releasing too quickly": just pay for support of older versions, such as HeroDevs' Never Ending Support for .NET 6…
#dotnet @hero.dev
Reposted by Damien Bowden
Implement a secure MCP server using OAuth DPoP and Duende identity provider by @damienbod.com damienbod.com/2025/11/03/i... #aspnetcore
November 18, 2025 at 9:21 PM
Implement a secure MCP server using OAuth DPoP and Duende identity provider by @damienbod.com damienbod.com/2025/11/03/i... #aspnetcore
Reposted by Damien Bowden
Post-Quantum Cryptography in .NET
What we've added for PQC, and how we got there.
dlvr.it
November 18, 2025 at 6:29 PM
Blogged: Implement forgot your password using swiyu, ASP.NET Core Identity and Aspire
damienbod.com/2025/11/17/i...
#swiyu #aspire #aspnetcore #duende #identity #iam #eid #swiss #identity #dotnet
damienbod.com/2025/11/17/i...
#swiyu #aspire #aspnetcore #duende #identity #iam #eid #swiss #identity #dotnet
Implement forgot your password using swiyu, ASP.NET Core Identity and Aspire
This post show to implement a “Forgot your password” flow using the Swiss Digital identity and trust infrastructure, (swiyu) in an ASP.NET Core web application using ASP.NET Core Identi…
damienbod.com
November 17, 2025 at 8:21 AM
Reposted by Damien Bowden
👋 Entra Exporter v3.0 is now out folks!
Amazing effort from Ondrej Šebela for
🚀 Blazingly fast export
🌀 Azure IAM support and more
Many thanks to our other contributors including Sam Erde, Jay Doubleu and Julian Steiman
Check it out at aka.ms/entraexporter
Amazing effort from Ondrej Šebela for
🚀 Blazingly fast export
🌀 Azure IAM support and more
Many thanks to our other contributors including Sam Erde, Jay Doubleu and Julian Steiman
Check it out at aka.ms/entraexporter
November 16, 2025 at 5:10 AM
👋 Entra Exporter v3.0 is now out folks!
Amazing effort from Ondrej Šebela for
🚀 Blazingly fast export
🌀 Azure IAM support and more
Many thanks to our other contributors including Sam Erde, Jay Doubleu and Julian Steiman
Check it out at aka.ms/entraexporter
Amazing effort from Ondrej Šebela for
🚀 Blazingly fast export
🌀 Azure IAM support and more
Many thanks to our other contributors including Sam Erde, Jay Doubleu and Julian Steiman
Check it out at aka.ms/entraexporter
Blogged: Implement MFA using swiyu, the Swiss E-ID with Duende IdentityServer, ASP.NET Core Identity and .NET Aspire
damienbod.com/2025/11/10/i...
#aspnetcore #aspire #dotnet #swiyu #eid #duende #eid #openid #oauth2 #identity #iam #vc #openidvp #DigitalIdentity #TrustInfrastructure #Switzerland
damienbod.com/2025/11/10/i...
#aspnetcore #aspire #dotnet #swiyu #eid #duende #eid #openid #oauth2 #identity #iam #vc #openidvp #DigitalIdentity #TrustInfrastructure #Switzerland
Implement MFA using swiyu, the Swiss E-ID with Duende IdentityServer, ASP.NET Core Identity and .NET Aspire
The post shows how to use the Swiss Digital identity and trust infrastructure, (swiyu) as an MFA method in an ASP.NET Core web application using ASP.NET Core Identity and Duende IdentityServer. The…
damienbod.com
November 10, 2025 at 7:24 AM
Blogged: Implement MFA using swiyu, the Swiss E-ID with Duende IdentityServer, ASP.NET Core Identity and .NET Aspire
damienbod.com/2025/11/10/i...
#aspnetcore #aspire #dotnet #swiyu #eid #duende #eid #openid #oauth2 #identity #iam #vc #openidvp #DigitalIdentity #TrustInfrastructure #Switzerland
damienbod.com/2025/11/10/i...
#aspnetcore #aspire #dotnet #swiyu #eid #duende #eid #openid #oauth2 #identity #iam #vc #openidvp #DigitalIdentity #TrustInfrastructure #Switzerland
Reposted by Damien Bowden
Use swiyu, the Swiss E-ID to authenticate users with Duende and .NET Aspire by @damienbod.com damienbod.com/2025/10/27/u... #aspnetcore
November 6, 2025 at 9:44 AM
Use swiyu, the Swiss E-ID to authenticate users with Duende and .NET Aspire by @damienbod.com damienbod.com/2025/10/27/u... #aspnetcore
Reposted by Damien Bowden
Blogged: Easier reflection with [UnsafeAccessorType] in .NET 10
andrewlock.net/exploring-do...
In this post I show how to work with [UnsafeAccessor] to do 'easier' reflection and how to use .NET 10's [UnsafeAccessorType] with types you can't reference at compile time
#dotnet
andrewlock.net/exploring-do...
In this post I show how to work with [UnsafeAccessor] to do 'easier' reflection and how to use .NET 10's [UnsafeAccessorType] with types you can't reference at compile time
#dotnet
Easier reflection with [UnsafeAccessorType] in .NET 10: Exploring the .NET 10 preview - Part 9
In this post I show how to work with [UnsafeAccessor] to do 'easier' reflection and how to use .NET 10's [UnsafeAccessorType] with types you can't reference
andrewlock.net
November 4, 2025 at 3:42 PM
Blogged: Easier reflection with [UnsafeAccessorType] in .NET 10
andrewlock.net/exploring-do...
In this post I show how to work with [UnsafeAccessor] to do 'easier' reflection and how to use .NET 10's [UnsafeAccessorType] with types you can't reference at compile time
#dotnet
andrewlock.net/exploring-do...
In this post I show how to work with [UnsafeAccessor] to do 'easier' reflection and how to use .NET 10's [UnsafeAccessorType] with types you can't reference at compile time
#dotnet
Blogged: Implement a secure MCP server using OAuth DPoP and Duende identity provider
damienbod.com/2025/11/03/i...
#aspnetcore #mcp #llm #duende #openidconnect #oidc #oauth #dpop #jwt #openai #ai
damienbod.com/2025/11/03/i...
#aspnetcore #mcp #llm #duende #openidconnect #oidc #oauth #dpop #jwt #openai #ai
Implement a secure MCP server using OAuth DPoP and Duende identity provider
Code: This post demonstrates how an ASP.NET Core application can connect to a secure MCP server using OpenID Connect and OAuth. Both applications use Duende IdentityServer as the identity provider.…
damienbod.com
November 3, 2025 at 6:49 AM
Blogged: Implement a secure MCP server using OAuth DPoP and Duende identity provider
damienbod.com/2025/11/03/i...
#aspnetcore #mcp #llm #duende #openidconnect #oidc #oauth #dpop #jwt #openai #ai
damienbod.com/2025/11/03/i...
#aspnetcore #mcp #llm #duende #openidconnect #oidc #oauth #dpop #jwt #openai #ai