Discovering .NET codebases using code coverage and NCrunch
Exploring and discovering unfamiliar codebases is always a challenge. In this blog post, I will introduce a novel way to explore a new codebase by
Exploring and discovering unfamiliar codebases is always a challenge. In this blog post, I will introduce a novel way to explore a new codebase by
The Data Protection API (DPAPI) is an essential service in ASP.NET Core that is often overlooked. This post will give an overview of what it
This blog post explores how we can improve the security of your ASP.NET Core authentication security by reducing the size of our cookies. Problem #1
In the world of web application security, OpenID Connect plays a key role in streamlining authentication processes. But what makes it really tick? In this
ASP.NET Core issues several cookies, including authentication, antiforgery, and session cookies. This blog post will explore what these cookies contain and how they are protected.
Troubleshooting cookie problems in ASP.NET Core I have answered over 1000 questions on Stack Overflow, and cookies are a common source of trouble for developers,
In ASP.NET Core 8, Microsoft added a new authentication handler named BearerToken. In this blog post, I will explain how it works and its purpose.
A common problem when protecting your ASP.NET Core APIs is that expected claims are not found in the user object. In this blog post, I
A common issue with OpenID Connect authentication in ASP.NET Core is that expected claims are missing from the ClaimsPrincipal user object. In this blog post,
A common question that I help developers with on Stack Overflow is how to troubleshoot authentication problems when using the JwtBearer handler. Here I provide
My name is Tore Nestenius and I’m a trainer and senior software developer focusing on Architecture, Security and Identity, .NET, C#, Backend, and Cloud, among other things.