Advertisement · 728 × 90

Posts by Tore Nestenius | MVP

My first video course is live: Getting Started with Authentication and Authorization in .NET Started as a 5–6h idea… turned into a 12+ hour deep dive into how auth really works in ASP.NET Core. Not just wiring things up, but understanding the internals.

My first video course is live: Getting Started with Authentication and Authorization in .NET Started as a 5–6h idea… turned into a 12+ hour deep dive into how auth really works in ASP.NET Core. Not just wiring things up, but understanding the internals.

My first video course is live:

Getting Started with Authentication & Authorization in .NET

Turned into a 12+ hour deep dive into how auth works in ASP.NET Core.

Not just wiring things up, but understanding the internals!

dometrain.com/course/getti...

#dotnet #aspnetcore #dometrain #mvpbuzz

4 days ago 1 0 0 0

Thanks! Glad you liked it!

4 days ago 0 0 0 0
Visualizing Claude Code MCP Requests with Coding Agent Explorer

Visualizing Claude Code MCP Requests with Coding Agent Explorer

When Claude Code talks to an MCP server, what is it actually saying?

Until now, that conversation was invisible.

New post: Visualizing Claude Code MCP Requests with the Coding Agent Explorer (.NET)

nestenius.se/ai/visualizi...

#ClaudeCode #MCP #mvpbuzz #dotnet @aspnetcore.news

5 days ago 0 0 1 0
Post image

After my last post, people asked:

What is Claude Code actually doing?

Part 2 is out: Claude Code Hooks 🔍

Intercept file access, commands, permissions, and tool usage.
Enforce rules. Block secrets. See everything.

nestenius.se/ai/exploring...
@aspnetcore.news @anthropic.com #claudecode #mvpbuzz

3 weeks ago 2 0 0 0
Post image

Do you know what happens between your prompt and ClaudeCode?

I didn’t. So I built it.

Coding Agent Explorer (.NET). A reverse proxy + live dashboard showing every LLM call, tool use, and token flow in real time.

nestenius.se/ai/introduci...

#claudecode #CodingAgents @anthropic.com #agentic

1 month ago 2 0 0 0
New blog post: Duende IdentityServer 7.4.4 from scratch in ASP.NET Core 10

New blog post: Duende IdentityServer 7.4.4 from scratch in ASP.NET Core 10

Duende IdentityServer 7.4.4 from scratch in ASP.NET Core 10

Templates are great until something breaks. I built IdentityServer from an empty project, explaining every piece along the way.

Covers Setup, UI, Logging, and more.

nestenius.se/net/duende-i...

@aspnetcore.news @duendesoftware.com

2 months ago 2 0 0 0
Preview
Duende BFFv4 is now available Duende BFFv4 is now available! Learn about multi-frontend, simplified security, and unlock end-to-end visibility with OpenTelemetry.

Duende BFF v4 is available! Architecturally, this is huge: you can now support multiple frontends from a single, robust backend. Plus, we've integrated OpenTelemetry for seamless end-to-end observability in your identity flow.

Simplify your stack: duendesoftware.com/blog/2025120...

4 months ago 3 3 0 0
Advertisement
Preview
BFF in ASP.NET Core #7 - Introducing the Duende BFF Library Learn how to migrate from custom Backend-for-Frontend implementation to Duende BFF library in ASP.NET Core. Complete tutorial with CSRF protection, OAuth 2.0, and API security.

🎯 BFF Series FINALE!

Part 7: Replace 200+ lines of custom code with Duende BFF Library in minutes.

Series complete - from tokens in browsers to bulletproof SPA security!

Thanks @duendesoftware.com

nestenius.se/net/bff-in-a...

#aspnetcore #oidc #dotnet #mvpbuzz @aspnetcore.news

8 months ago 3 1 0 0
Preview
BFF in ASP.NET Core #7 - Introducing the Duende BFF Library Learn how to migrate from custom Backend-for-Frontend implementation to Duende BFF library in ASP.NET Core. Complete tutorial with CSRF protection, OAuth 2.0, and API security.

🎯 BFF Series FINALE!

Part 7: Replace 200+ lines of custom code with Duende BFF Library in minutes.

Series complete - from tokens in browsers to bulletproof SPA security!

Thanks @duendesoftware.com

nestenius.se/net/bff-in-a...

#aspnetcore #oidc #dotnet #mvpbuzz @aspnetcore.news

8 months ago 3 1 0 0
Preview
BFF in ASP.NET Core #6 - Securing our BFF with CORS Learn how to secure your ASP.NET Core Backend-for-Frontend (BFF) with robust CORS protection. Prevent cross-origin attacks, implement preflight requests, and add custom middleware for enhanced securit...

BFF Series #6 is live: Securing Your BFF with CORS

Just published my guide to implementing production-ready CORS policies for BFF architectures.

✅ Why "AllowAnyOrigin" is dangerous
✅ Strict origin configuration
✅ ASP.NET Core examples

nestenius.se/net/bff-in-a...

#aspnetcore #cors #dotnet #oidc

8 months ago 1 0 0 0
Post image

🔄 BFF Pattern Series Part 5: Automatic Token Renewal

Learn how to implement seamless token renewal in ASP.NET Core that your users will never notice.

nestenius.se/net/bff-in-a...

#aspnetcore #dotnet #bff #oauth #oidc #mvpbuzz

8 months ago 0 0 0 0
Post image

🛠️ BFF Pattern Series #4: Building Your First BFF from Scratch

Theory → Practice. Part 4 is live!

✅ ASPNET Core
✅ Real OpenID Connect integration
✅ Secure API proxying
✅ Zero tokens in the browser

🔗 nestenius.se/net/bff-in-a...

#aspnetcore #bff #dotnet #oidc #mvpbuzz

8 months ago 1 0 0 0
Post image

BFF Pattern Series #3 is live!

You moved tokens out of the browser, but is your
session cookie actually secure?

Learn how to properly protect cookies with:
✅ HttpOnly
✅ SameSite
✅ __Host- prefixes
and more...

nestenius.se/net/bff-in-a...

#aspnetcore #bff #dotnet #mvpbuzz

8 months ago 1 0 0 0
Post image

🔐 BFF Pattern Series Part 2 is live!

Learn why storing tokens in browsers is no longer acceptable and how the BFF pattern became the gold standard for SPA security.

Your SPA handles UI. Your BFF handles security!

👉 nestenius.se/net/bff-in-a...

#aspnetcore #dotnet #security #bff

9 months ago 3 1 0 0
Post image

🚀 New series: Securing SPAs with the BFF Pattern
Stop storing tokens in the browser!

My new blog series shows how to eliminate XSS risks using Backend-for-Frontend in asp.net Core.

Part 1: nestenius.se/net/implemen...

#aspnetcore #dothet #security #mvpbuzz

9 months ago 5 1 0 0
Advertisement
LinkedIn This link will take you to a page that’s not on LinkedIn

How to use KurrentDB for Event Sourcing in C# on Azure?

🚀 Deploy it with PowerShell
⚙️ Connect from .NET
📦 Write and read events
🔍 Inspect with Kurrent Navigator

Full guide 👉 nestenius.se/net/how-to-u...

@kurrent-io.bsky.social
#KurrentDB #EventSourcing #CQRS #dotnet #DDD #Azure #mvpbuzz

11 months ago 1 0 0 0

Thanks! Glad you liked it! Wasted soo many hours trying to find the root cause for this🙁

11 months ago 0 0 0 0
Post image

Configuring ASP .NET Core Forwarded Headers Middleware by @tndata.bsky.social nestenius.se/net/configur... #aspnetcore

1 year ago 3 1 0 0
𝐍𝐞𝐰 𝐛𝐥𝐨𝐠 𝐩𝐨𝐬𝐭: 𝐂𝐨𝐧𝐟𝐢𝐠𝐮𝐫𝐢𝐧𝐠 𝐭𝐡𝐞 𝐅𝐨𝐫𝐰𝐚𝐫𝐝𝐞𝐝 𝐇𝐞𝐚𝐝𝐞𝐫𝐬 𝐌𝐢𝐝𝐝𝐥𝐞𝐰𝐚𝐫𝐞 𝐢𝐧 𝐀𝐒𝐏.𝐍𝐄𝐓 𝐂𝐨𝐫𝐞

𝐍𝐞𝐰 𝐛𝐥𝐨𝐠 𝐩𝐨𝐬𝐭: 𝐂𝐨𝐧𝐟𝐢𝐠𝐮𝐫𝐢𝐧𝐠 𝐭𝐡𝐞 𝐅𝐨𝐫𝐰𝐚𝐫𝐝𝐞𝐝 𝐇𝐞𝐚𝐝𝐞𝐫𝐬 𝐌𝐢𝐝𝐝𝐥𝐞𝐰𝐚𝐫𝐞 𝐢𝐧 𝐀𝐒𝐏.𝐍𝐄𝐓 𝐂𝐨𝐫𝐞

New blog post 📝

Running ASP.NET Core behind a proxy?
Then you need to configure ForwardedHeadersMiddleware the right way.

✅ Trust proxy IPs
✅ Handle X-Forwarded-* headers
✅ Avoid broken IPs, schemes & hosts

Read it 👉 nestenius.se/net/configur...
#aspnetcore #proxy #mvpbuzz

1 year ago 3 1 0 0
Post image

🚀 .NET 10 Preview 1 is here! 🎉

The next LTS release brings:
✅ Faster JIT & AVX 10.2 support
✅ Blazor & Minimal API improvements
✅ New C# 14 features
✅ EF Core & .NET MAUI updates

Check out what’s new! 🔗👇
🔗 learn.microsoft.com/en-gb/dotnet...

#dotnet #aspnetcore

1 year ago 1 0 0 0
Post image

Are you ready? 🏃‍♀️🏃‍♂️
The Call for Papers for #Oredev2025 opens in just a few days!

More info on how to prepare on our website! 👉 oredev.org/callforpaper

1 year ago 13 6 0 0
Post image

Exploring the Forwarded Headers Middleware in ASP .NET Core by @tndata.bsky.social https://buff.ly/3EbJB8v #aspnetcore

1 year ago 1 1 0 0
Exploring the Forwarded Headers Middleware in ASP.NET Core

Exploring the Forwarded Headers Middleware in ASP.NET Core

🚀 New blog post: 𝐄𝐱𝐩𝐥𝐨𝐫𝐢𝐧𝐠 𝐭𝐡𝐞 𝐅𝐨𝐫𝐰𝐚𝐫𝐝𝐞𝐝 𝐇𝐞𝐚𝐝𝐞𝐫𝐬 𝐌𝐢𝐝𝐝𝐥𝐞𝐰𝐚𝐫𝐞 𝐢𝐧 𝐀𝐒𝐏.𝐍𝐄𝐓 𝐂𝐨𝐫𝐞

Lost client IPs? Incorrect URLs? Proxies like load balancers or TLS terminators causing trouble?

nestenius.se/hardware/exp...

#ASPNetCore #Proxy #dotnet

1 year ago 0 1 0 0
Post image

Excited to hear @madskristensen.net’s keynote at #TechPassionDay in Copenhagen! Learning about Building Lovable Software for Millions of Users—can’t wait! #Innovation #SoftwareDevelopment

1 year ago 2 0 0 0
Post image

AdditionalAuthorizationParameters in ASP .NET Core 9 by @tndata.bsky.social https://buff.ly/40l1YjT #aspnetcore

1 year ago 2 1 0 0
Advertisement
Preview
.NET Aspire Quick Tip - Managing Container & Data Lifetime - .NET Blog .NET Aspire 9 adds new control over the lifetime of containers on your local developer environment. Let's look at how to manage them with the new APIs!

.NET Aspire Quick Tip – Managing Container & Data Lifetime

1 year ago 3 1 0 0
AdditionalAuthorizationParameters in ASP.NET Core 9

AdditionalAuthorizationParameters in ASP.NET Core 9

Simplify OpenID-Connect in ASP.NET Core 9 with 𝐀𝐝𝐝𝐢𝐭𝐢𝐨𝐧𝐚𝐥𝐀𝐮𝐭𝐡𝐨𝐫𝐢𝐳𝐚𝐭𝐢𝐨𝐧𝐏𝐚𝐫𝐚𝐦𝐞𝐭𝐞𝐫𝐬! 🎉

No more clunky workarounds—easily customize & maintain authentication flows.

Learn more here: nestenius.se/net/addition...

#dotnet #OIDC #Authentication #aspnetcore

1 year ago 1 1 0 0

Thanks! Looking forward to explore all the fun and interesting opportunities 😀

1 year ago 1 0 0 0

Thanks!😀

1 year ago 1 0 0 0

Thanks 😀

1 year ago 0 0 0 0