Dominick works as an associate consultant for the Germany-based company thinktecture (). His main area of focus is security in. Dominick Baier is an independent consultant specializing in identity & access control. He helps companies around the world designing & implementing. Dominick Baier. leastprivilege. 0 starred decks Tweet Share. fbbb90cea5ed0fee?s=48 Sep 27, 5.

Author: Monris Meztitaxe
Country: Kosovo
Language: English (Spanish)
Genre: History
Published (Last): 26 March 2015
Pages: 300
PDF File Size: 15.99 Mb
ePub File Size: 3.14 Mb
ISBN: 153-7-98906-143-7
Downloads: 20467
Price: Free* [*Free Regsitration Required]
Uploader: Gardagal

The additional confusion was added by the fact that the. The IdentityModel organization on Github is the home for our client libraries. The effect would be e. I once and for all wanted an official statement, how to deal with HttpClient — so I reached out to Immo terrajobst over various channels.

Despite domniick being on holidays during that time, he gave a really elaborate answer that contains both excellent bier information and guidance. I had to check my email archives, but this concludes a discussion we started with the ASP.


Server-side UIs typically use cookies for authentication or a combination of cookies and OpenID Connect and APIs should use access tokens — and you want to make sure that you are not accepting cookies in the API by accident.

Posted in Uncategorized Leave a comment.

NET Core configuration model as well: For a full sample — see here. It is a bit surprising that most dominiick are individual developers that use IdentityServer at work. IdentityModel has a number of protocol client libraries, e.

And one of my favourite features is the nice integration of the Polly library and handlers in general to give you extra features like retry logic:. NET domknick as a set of packages where being in-box vs. NET Standard we originally tried to model the. View original post more words.


We had lots of issues with this because it seemed regardless in which combination you are using the flavours of HttpClient, this will lead to a problem one way or another baiwr issues. Baifr did not work prior to ASP. This was also a big year for IdentityServer. Posted on December 11, by Dominick Baier.

NET Core configuration model as well:. The most popular one is IdentityModel itself with over 9,3 million downloads on Nuget. Ever since, this was our primary focus and we did a lot of customer work over the last 12 months to make sure that PolicyServer is really meeting the real world needs.

While I could just add more constructor overloads that take an HttpClientI decided to explore another route all credits for this idea goes to randompunter. Turns out I was not alone with this problem. The latest issue was related to Powershell and. Since authentication of incoming calls in ASP.

In I developed and released the first version of IdentityManager. Brock is right now working on his JavaScript library called oidc-client. NET Framework so this only really works well if you add binding redirects. Both get minor updates right now, and I am planning to release them all together beginning next year. Simply because we want to make existing code work that took a dependency on it.

NET team in ! Core domiinck abstracted by so called authentication handlers, and you can register as many of them as you want — you can support both authentication scenarios.


Dominick Baier

They have taken on stewardship of this project so it can continue to live on. You do that by adding a forward selector to the authentication handler like this:.

As part of that work, we also now Authenticode-sign our binaries as well as signed the Nuget packages. See you next year!

Presentations by Dominick Baier – Speaker Deck

IdentityServer This was also a big year for IdentityServer. It might get pulled from 1. NET Framework, and sometimes not, e. I reworked all the clients to be simply extensions methods for HttpClient. We have many plans for upcoming versions, and I must say it was a refreshing change to do some real product work as opposed to short to mid-term consulting and contracts. Baire team decided to ship IdentityServer in their new templates that will be released shortly after dojinick.

IdentityModel has recently joined the. You do that by adding a forward selector to the authentication dominic, like this: This is work in progress right now, but it feels like this is a better abstraction level than the current client implementations. More on that in a separate post. Baiet can mix that with the ASP. The intent was to provide a simple, self-contained administrative tool for managing users in your ASP.

HttpClientFactory also supports named clients, which allows configuring certain things upfront, e. The State of HttpClient and.