Give Your AI Coding Assistant Duende Expertise with Agent Skills and MCP Server Announcing Duende Agent Skills and the Duende Documentation MCP Server. Two tools that give AI coding assistants deep knowledge of IdentityServer, BFF, and identity protocols.

We benchmarked our new Duende Agent Skills on deeply specific identity tasks using Claude Opus 4.6. The results? An average improvement of 28%—and up to 60%! 🔥

Give your AI the domain expertise it’s missing: duende.link/87qibs

#identityserver #dotnet #aspnet #aspnetcore

Give Your AI Coding Assistant Duende Expertise with Agent Skills and MCP Server Announcing Duende Agent Skills and the Duende Documentation MCP Server. Two tools that give AI coding assistants deep knowledge of IdentityServer, BFF, and identity protocols.

Adding Duende expertise to your AI assistant is incredibly easy. Using Claude Code CLI? Just run: /plugin marketplace add DuendeSoftware/duende-skills

Try it out, ask it to "apply security best practices," and let us know what skills we should add next! 👇

duende.link/87qibs

Application Modernization Future-proof your apps with Duende's identity modernization. Get better security and control while preserving your existing identity logic.

SaaS providers are black boxes. Duende gives you full source access. Step-through to understand exactly how it all works.

Learn how: duende.link/appmodli

#dotnet #aspnet #aspnetcore

When configuring Duende IdentityServer, an "almost right" AI response isn't good enough. 🛑

Our new Duende Agent Skills teach your AI (Copilot, Claude, Cursor) the exact ASP.NET Core & Duende-specific details it needs for secure token management and UI flows.

👉️ duende.link/87qibs

Content Security Policy Reporting with IdentityServer In this third installment of our mini-series on Content Security Policy (CSP), we dive into a critical security practice: detecting when a policy violation has occurred. Having a strict CSP is great,…

Looking to lock down your web app? 🔒 Don't just set a #CSP, learn how to monitor it! Our new video dives into Content Security Policy Reporting using report-uri, report-to, and friends.

Know when a violation occurs: youtu.be/apoRlEq5PAs

#WebSecurity #dotnet #CSP #InfoSec

Give Your AI Coding Assistant Duende Expertise with Agent Skills and MCP Server Announcing Duende Agent Skills and the Duende Documentation MCP Server. Two tools that give AI coding assistants deep knowledge of IdentityServer, BFF, and identity protocols.

AI + Identity = 🚀🛡️ General AI models struggle with specific identity configs. That's why we built Duende Agent Skills & the Duende Documentation MCP Server!

Give your coding assistant deep knowledge of Duende IdentityServer, BFF, and identity protocols.

Read more: duende.link/87qibs

.NET 10 performance benefits everyone. By optimizing IdentityServer for the new runtime, we pass those gains down to every application that relies on us.

Reduced CPU cycles in auth mean lower cloud bills for the entire community.

Learn More: duende.link/bpicx

#dotnet #aspnet #aspnetcore

Application Modernization Future-proof your apps with Duende's identity modernization. Get better security and control while preserving your existing identity logic.

SaaS providers are black boxes. Duende gives you full source access. Step-through to understand exactly how it all works.

Learn how: duende.link/appmodli

#dotnet #aspnet #aspnetcore

Duende Product Insiders We invite you to join a deeply technical, standards-driven community to help shape the future of .NET security and identity.

Auth is technical; implementation is human. We want to know what frustrates and excites you.

Let’s build a more human-centric developer experience together.

Apply here: duende.link/insiders

#aspnet #dotnet

Triggering User Registration via OpenID Connect with Duende IdentityServer Learn how to trigger user registration in your OpenID Connect flow using the standardized prompt=create parameter, bypassing the typical login screen and requesting user registration instead.

User registration that follows OpenID Connect? Use the prompt=create parameter.

Redirects to your sign-up page, then brings the new user back into the OIDC flow for token acquisition. Supported by IdentityServer.

Learn more: duende.link/978w4u

#OIDC #DotNet

Duende IdentityServer The most flexible and standards-compliant OpenID Connect and OAuth framework for ASP.NET Core.

.NET 10 performance benefits everyone. By optimizing IdentityServer for the new runtime, we pass those gains down to every application that relies on us. Reduced CPU cycles in auth mean lower cloud bills for the entire community.

Learn more here: duende.link/2swrhhw

#dotnet #aspnet #aspnetcore

Standards evolve because people participate. Insiders help shape the roadmap. When we prototype new features, we ask the community how they fit real-world architectures.

Apply: duende.link/insiders

#aspnet #dotnet

Standards like OAuth and OpenID Connect evolve through community participation. When we prototype new products and features, we engage the community to learn how solutions solve real-world challenges. Your voice has real impact on the future of Duende.

Apply: duende.link/insiders

Duende IdentityServer v7.4 is now available Duende IdentityServer v7.4 is here! Full compatibility with .NET 10 LTS, plus a standards-based foundation for agentic AI systems and MCP.

.NET 10 performance benefits everyone. By optimizing IdentityServer for the new runtime, we pass those gains down to every application that relies on us. Reduced CPU cycles in auth mean lower cloud bills for the entire community.

Learn More: duende.link/is74b0b

#dotnet #aspnet #aspnetcore

Application Modernization Future-proof your apps with Duende's identity modernization. Get better security and control while preserving your existing identity logic.

Don't rely on status pages during an outage. Commercial licenses include priority support. Direct assistance from the maintainers is a necessity for mission-critical infra.

Learn how: duende.link/appmodb

#dotnet #aspnet

The Big Picture An overview of modern application architecture patterns and how OpenID Connect and OAuth 2.0 protocols implemented by IdentityServer solve authentication and API access challenges

Null exceptions are costly. We are enforcing strict Nullable Reference Types across the IdentityServer API in .NET 10. The compiler catches bugs before you deploy. The community deserves rigorous design.

Learn more on our documentation site: duende.link/bpicli

#dotnet #aspnet

Standards evolve because people participate. Insiders help shape the roadmap. When we prototype new features, we ask the community how they fit real-world architectures.

Apply: duende.link/insiders

#aspnet #dotnet

Improving .NET Security Code with C# 14 Property Extensions Stop writing boilerplate code for ClaimsPrincipal. C# 14 extension members let you use properties to centralize claim access logic, leading to cleaner, more secure ASP.NET Core applications.

Stop writing boilerplate code for ClaimsPrincipal! 🛡️

#csharp 14 extension members let you use properties to centralize claim access logic, leading to cleaner, #aspnetcore application code.

Read more: duende.link/7efu3d

A First Look at Duende User Management | Duende Join us March 24 for a first look at Duende User Management. Learn to replace ASP.NET Identity with built-in Passkeys, MFA, and audits.

Our livestream starts NOW! 🔴

Passkeys. Built-in MFA. One-Time Passwords. Audit trails. 🔐 See how Duende User Management is replacing the complexity of ASP.NET Identity with a crafted, integrated foundation.

Join the live preview: duende.link/78q3hk

#dotnet #aspnet #aspnetcore

A First Look at Duende User Management | Duende Join us March 24 for a first look at Duende User Management. Learn to replace ASP.NET Identity with built-in Passkeys, MFA, and audits.

Our livestream starts in ONE HOUR! 🚨

Want the power of Duende IdentityServer but with faster time-to-value? ⏱️ We’re previewing a first-party user management .NET SDK that gives you Passkeys, MFA, and audit trails out-of-the-box.

RSVP: duende.link/78q3hk

#dotnet #aspnet #aspnetcore

A First Look at Duende User Management | Duende Join us March 24 for a first look at Duende User Management. Learn to replace ASP.NET Identity with built-in Passkeys, MFA, and audits.

Passkeys. Built-in MFA. One-Time Passwords. Audit trails. 🔐 See how Duende User Management is replacing the complexity of ASP.NET Identity with a crafted, integrated foundation.

Join the live preview: duende.link/78q3hk

#dotnet #aspnet #aspnetcore

Duende Product Insiders We invite you to join a deeply technical, standards-driven community to help shape the future of .NET security and identity.

Identity is hard. Building it alone is harder. 🤝

Join our private Insiders Discord to talk BFF, Passkeys, and OpenTelemetry with the Duende team and senior devs worldwide. A no-fluff zone for mission-critical systems.

Apply: duende.link/insiders

A First Look at Duende User Management | Duende Join us March 24 for a first look at Duende User Management. Learn to replace ASP.NET Identity with built-in Passkeys, MFA, and audits.

Want the power of Duende IdentityServer but with faster time-to-value? ⏱️ We’re previewing a first-party user management .NET SDK on March 24th that gives you Passkeys, MFA, and audit trails out-of-the-box. Keep your data control, ditch the custom coding.

RSVP: duende.link/78q3hk

#dotnet #aspnet

Duende Product Insiders We invite you to join a deeply technical, standards-driven community to help shape the future of .NET security and identity.

Standards like OAuth and OpenID Connect evolve through community participation. When we prototype new products and features, we engage the community to learn how solutions solve real-world challenges. Your voice has real impact on the future of Duende.

Apply: duende.link/insiders

#dotnet

Inline Code and Content Security Policy with IdentityServer Inline code is a major challenge when implementing a strong Content Security Policy (CSP). CSP is an important defense-in-depth mechanism that restricts resource loading, but it often blocks inline…

Content Security Policy (CSP) and inline code? 🤯

Our new video covers challenges of CSP blocking inline styles/scripts and shows you the safe ways to re-enable them: hashes, nonces, and the risks of 'unsafe-inline'.

Watch here: youtu.be/DAourQuPDTE

#dotnet #securitytips

The best optimization is the one you don't write. Upgrading to .NET 10 delivers throughput gains purely through runtime improvements. Get a "free" boost by updating the package.

Learn More: duende.link/bpicb

#aspnet #dotnet

A First Look at Duende User Management | Duende Join us March 24 for a first look at Duende User Management. Learn to replace ASP.NET Identity with built-in Passkeys, MFA, and audits.

Want the power of Duende IdentityServer but with faster time-to-value? ⏱️ We’re previewing a first-party user management .NET SDK on March 24th that gives you Passkeys, MFA, and audit trails out-of-the-box. Keep your data control, ditch the custom coding.

RSVP: duende.link/78q3hk

#dotnet

Developing Audit Logs with Duende IdentityServer Events Learn how to use Duende IdentityServer's structured eventing system to build compliance-grade audit logs for regulated industries like finance and healthcare, satisfying SOC 2 and HIPAA requirements…

Learn how to use Duende IdentityServer's structured eventing system to build a clean, compliance-grade audit trail that satisfies SOC 2, HIPAA, and HRI requirements.

Capture the right things in a structured, tamper-evident format: duende.link/q4h4nx

#dotnet

Application Modernization Future-proof your apps with Duende's identity modernization. Get better security and control while preserving your existing identity logic.

SaaS providers are black boxes. Duende gives you full source access. Step-through to understand exactly how it all works.

Learn how: duende.link/appmodb

#aspnet #aspnetcore #dotnet

The best solution architects do not work in isolation. They validate their ideas with peers and experts. Join the conversation and validate your designs with the best in the industry.

Apply here: duende.link/insiders

#dotnet #aspnet #aspnetcore