Category Archives: Uncategorized

Originally posted on Badrinarayanan Lakshmiraghavan's Blog:
This is continuation of my previous post Basic Authentication with ASP.NET Web API Using OWIN Middleware, where I implemented HTTP basic authentication in a custom OWIN middleware class AuthenticationMiddleware that derives from the…

Originally posted on brockallen:
It’s sort of silly that I’m doing an announcement now since MembershipReboot is at version 2.1 (my first release was in January, 2013), but since I never made a formal post on it, this will have…

Originally posted on brockallen:
Dominick and I have been working hard at implementing OpenID Connect in Thinktecture IdentityServer. Dominick has recently completed the authorization server and user profile endpoint bits. We also just recently completed a sample for a basic…

Originally posted on Badrinarayanan Lakshmiraghavan's Blog:
Hawk is a MAC-based HTTP authentication scheme that provides partial cryptographic verification of HTTP messages. Hawk requires a symmetric key to be shared between the client and the server out-of-band. For more info,…

Originally posted on Badrinarayanan Lakshmiraghavan's Blog:
This is continuation of my earlier post on implementing Hawk authentication for ASP.NET Web API using Thinktecture.IdentityModel.45. One of the primary design goals of the Hawk scheme is to “simplify and improve HTTP…

Originally posted on brockallen:
I don’t know why it’s taken me this long to add anti-clickjacking support, but I finally needed it myself today so I added it to Thinktecture IdentityModel. If you’re not familiar with clickjacking, it’s an attack…

Originally posted on brockallen:
I just added a custom configuration section in Thinktecture IdentityModel that will automatically drive the various SAM and FAM helper functions I added a while ago. The configuration looks something like this: <configuration>   <configSections>    …

Curated content seems to be the new thing, here’s mine: http://flip.it/C9sav