The blog post discusses the Microsoft Authentication Library (MSAL) and its limitations regarding managed identities in confidential client applications. The author provides a solution by introducing a library that allows develope...
About:
I’m Stephan, a software developer specialized in API security. A Microsoft MVP in security since October 2022 and a public speaker.
Website:
Outgoing Links:
Subscribe to RSS:
The blog post discusses the author's frustrations with the large size of the Azure Static Web App deploy GitHub Actions, which requires a 1.6 GB Docker container for minor changes. The author introduces a new method called Azure S...
The post introduces Identity Proxy, an open-source project designed to facilitate testing of APIs that use JSON Web Tokens (JWT) for authentication without disabling the authentication process. It outlines the challenges faced whe...
The blog post discusses the importance and management of app roles in Microsoft Entra ID, emphasizing role-based access control (RBAC) in application design. It outlines the process of defining permissions, mapping users to roles,...
This guide details how to use Microsoft's Kiota tool for automatic API client generation in .NET applications, enhancing development efficiency.
The post recounts the author's experience presenting on Identity Proxy at DOTNET Zuid, emphasizing audience interaction and key insights on authentication and API security.
The blog post discusses transitioning from using API keys to Trusted Publishing for NuGet packages via GitHub Actions. It outlines the steps to create a trusted publishing policy on nuget.org, update the GitHub Actions workflow to...
5.3OpenAPI in Dotnet 10: Number quirk
2025-12-19 • development api openapi schema dotnet
The post highlights a number representation issue in OpenAPI specs for Dotnet 10 and provides a solution using a schema transformer to ensure accurate code generation.
A straightforward PowerShell script for Windows developers to efficiently delete merged branches in Git repositories, ensuring a clean and organized workspace.
The post discusses the author's new project, Unobtanium.Web.Proxy, a web proxy for developers, and outlines the upcoming changes to its API. It emphasizes the transition from an event-based to a functional model for better control...
The blog post provides a guide on how to test API endpoints for authentication using .NET Core minimal APIs and TUnit. It outlines the steps to create a test project, set up an API factory, and implement a method data source to en...
CollabDays Belgium 2025, held on October 18th in Edegem, featured multiple sessions focused on Microsoft 365 technologies. The author presented two sessions: one on enhancing live coding with the Demo Time VS Code extension and an...
The text is about Maester, an open-source security scanner for Microsoft 365 tenant, and the author's experience giving a talk about it at Experts Live Netherlands. The tool provides actionable reports and the author made contribu...
Microsoft is supporting Windows 11 on ARM64 devices, and Intune requirements for deploying ARM64 applications are discussed. The registry requirement for ARM64 devices is also explained, along with the changes made to WinTuner for...
The text explains how to use GitHub workflow commands in PowerShell, including setting messages, masking values, setting environment variables, setting output variables, and setting job summaries. It also provides PowerShell equiv...
0Configure JWT Authentication in Dotnet
2025-04-17 • api .net jwt authentication
The text explains how to configure JWT authentication in a .NET API, including what JWT is, prerequisites, library quicks, configuration, authentication in Program.cs, securing endpoints, testing, and provider specific configurati...
The text explains how to write Github action job summaries from dotnet. It provides a technical explanation and a class to create a GithubFileStream. It also gives tips and notes on writing job summaries and concludes by discussin...
The text is a deep dive into managed identities, presented at Bitbash 2025. The author explains the use of managed identities, the configuration, and the process of using managed identities in development environments and multi-te...
Bitbash 2025 was a two-day event in the Netherlands focused on dotnet and cloud. The first day included workshops on Dapr and Aspire, while the second day featured sessions on Dapr, OpenAPI, Azure Development Environments, and mor...
0Connect
2024-12-31 •
...
The post explains how to use multi tenant support for managed identities in Azure Automation. It provides a step-by-step guide to create an automation account, install modules, create app registration, add federated credentials, a...
Microsoft has announced that managed identities can now be used in a multi-tenant scenario, which is a significant step forward in terms of security for those building multi-tenant applications. Managed identities are a way to aut...
The text compares Azure AD B2C and Entra External ID as user authentication solutions for applications. It discusses features, pricing, and future support for both solutions, providing a detailed comparison and recommendations for...
The text explains the concept of open-source software, emphasizing that it is free to use, modify, and distribute. It also highlights the importance of community support and the need for expectation management when seeking help fr...