1. Enjoy this blog? My book, ASP.NET Core in Action is available now! Click here to get the 1st chapter free.
2. Safely migrating passwords in ASP.NET Core Identity with a custom PasswordHasher

   In this post I create a custom IPasswordHasher implementation that can be used in ASP.NET Core Identity to migrate from weak hashes like MD5 or SHA1.…

   May 07, 2019 in ASP.NET Core ASP.NET Core 2.0 ASP.NET Core Identity Security
3. Secure secrets storage for ASP.NET Core with AWS Secrets Manager (Part 2)

   In this post I show how to control which secrets are loaded from AWS Secrets Manager when your ASP.NET Core app start.…

   December 06, 2018 in ASP.NET Core Security Configuration AWS
4. Secure secrets storage for ASP.NET Core with AWS Secrets Manager (Part 1)

   In this post I show how you can store your ASP.NET Core secrets securely in AWS Secrets Manager and load them at runtime into the .NET Core configuration…

   December 04, 2018 in ASP.NET Core Security Configuration AWS
5. Implementing custom token providers for passwordless authentication in ASP.NET Core Identity

   In this post I show how to create 2 custom token providers for ASP.NET Core Identity, so that you can implement passwordless login with a short token expiry…

   April 10, 2018 in ASP.NET Core ASP.NET Core Identity Auth Security
6. Gotchas upgrading from IdentityServer 3 to IdentityServer 4

   This post covers a couple of gotchas I experienced upgrading an IdentityServer 3 implementation to IdentityServer 4. In particular, changing URLs and a…

   February 20, 2018 in ASP.NET Core ASP.NET Core Identity IdentityServer Security Auth Issues
7. Migrating passwords in ASP.NET Core Identity with a custom PasswordHasher

   In this post I create a custom IPasswordHasher implementation that can be used in ASP.NET Core Identity to support other hashing formats, such as BCrypt.…

   October 26, 2017 in ASP.NET Core ASP.NET Core 2.0 ASP.NET Core Identity Security