@spin973 profile picture
IdentitySuite @spin973

IdentitySuite is a powerful .NET library that provides a complete OpenID Connect authentication solution built on OpenIddict and Microsoft Identity.

Joined November 2021
  • Tweets 29
  • Following 22
  • Followers 5
4 Photos and videos
Pinned Tweet
IdentitySuite@spin973
1 Jul 2025
IdentitySuite combines the power of OpenIddict and Microsoft Identity into a seamless ASP.NET Core solution—ready to deploy, easy to configure, and built to simplify secure authentication. #identitysuite identitysuite.net

ASP.NET Core, an open-source web development framework | .NET

Build web apps and services that run on Windows, Linux, and macOS using C#, HTML, CSS, and JavaScript. Get started for free on Windows, Linux, or macOS.

dotnet.microsoft.com
1
3
3
554
The "Login with Google" button never sends your Google password to the app. The app never even sees it. Here's what actually happens instead 👉 identitysuite.net/blog/ident… #identitysuite #aspnetcore

OAuth 2.0 explained without code — what happens when you click 'Login with Google'

What actually happens when you click 'Login with Google'? OAuth 2.0 explained in plain terms — no code, no jargon, just the flow that powers modern authentication.

identitysuite.net
1
5
Local JWT validation is fast — but it can't detect revoked tokens. OpenIddict introspection checks token status on every request, directly with the auth server. That's the difference between "probably valid" and "definitely valid". 👉 identitysuite.net/blog/ident… #openiddict

How to protect a .NET Web API with tokens — from concept to implementation

Learn how to secure a .NET Web API using OpenIddict token introspection. A practical step-by-step guide from configuration to reading claims, with IdentitySuite as the authorization server.

identitysuite.net
1
76
Authentication cookies ≠ tracking cookies. Same technology. Completely different purpose. One follows you around the web for ads. The other keeps you logged in securely. Here's how web authentication actually works 👉 identitysuite.net/blog/ident… #identitysuite #aspnetcore

Sessions, cookies and tokens — how web authentication really works

Every time you log into a website, a sequence of decisions happens behind the scenes. Learn how sessions, cookies and tokens work, what makes them different, and why modern applications choose tokens.

identitysuite.net
1
16
JWT token carries: 🔹 Who you are (sub) 🔹 What you can do (roles, scopes) 🔹 When it expires (exp) 🔹 A signature that proves it hasn't been tampered with No database lookup needed on every request. 👉 identitysuite.net/blog/ident… #identitysuite #aspnetcore

What are JWT tokens and why your app needs them

JWT tokens are at the heart of modern authentication. Learn what they are, how they work, and why they have become the standard way for applications to verify identity securely.

identitysuite.net
1
23
🚀 New version released! Real‑time logs are now available directly in the Admin UI dashboard widget. #identitySuite
1
1
30
identitysuite.net/documentat…

What's New in IdentitySuite

Discover the latest features and enhancements introduced in IdentitySuite.

identitysuite.net
23
OpenIddict in production needs: ✅ Persistent certificates ✅ Explicit token lifetimes ✅ PKCE enforced ✅ Exact redirect URI matching ✅ Token revocation IdentitySuite handles all of this out of the box. 👉 identitysuite.net/blog/ident… #openiddict #identitysuite

OpenIddict and IdentitySuite — secure configuration without the complexity

Every OpenIddict pitfall has a solution. See how IdentitySuite handles certificates, token lifetimes, PKCE, redirect URIs, and token revocation out of the box — without writing a single line of...

identitysuite.net
1
131
OpenIddict doesn't make security decisions for you. That's not a criticism — it's by design. But it means every configuration choice is yours to get right. Here's where most developers get it wrong 👉 identitysuite.net/blog/ident… #openiddict #identitysuite

The pitfalls of configuring OpenIddict from scratch — what can go wrong

Configuring OpenIddict from scratch is more complex than it looks. Discover the most common mistakes developers make and why getting them wrong has real security consequences.

identitysuite.net
2
197
OpenIddict is not a SaaS. Not a cloud platform. Not a hosted service. It's a library you add to your .NET project — and it handles the full OAuth 2.0 OpenID Connect stack. Here's what it actually does 👉 identitysuite.net/blog/ident… #openiddict #identitysuite

What is OpenIddict: the .NET framework developers choose for OAuth 2.0 and OpenID Connect

OpenIddict is the open-source .NET framework developers trust to implement OAuth 2.0 and OpenID Connect. Learn what it does, how it fits into the .NET ecosystem, and why it has become the go-to...

identitysuite.net
1
83
IdentitySuite 2.3.0 is live! ✨ Inline help 🛡️ Global token revocation 🎯 Client‑specific token cleanup 🔒 .NET 10.0.7 (CVE‑2026‑40372) 🔗 OpenIddict 7.5 Security usability in one clean release.
1
2
133
identitysuite.net/documentat…

What's New in IdentitySuite

Discover the latest features and enhancements introduced in IdentitySuite.

identitysuite.net
1
37
IdentitySuite retweeted
Kévin Chalet@kevin_chalet
Apr 21
If you're using ASP․NET Core Data Protection 10.x, update your app and revoke all the existing Data Protection keys IMMEDIATELY 🚨 #dotnet #aspnetcore github.com/dotnet/announceme…

Microsoft Security Advisory CVE-2026-40372 – ASP.NET Core Elevation of Privilege · Issue #395 ·...

Microsoft Security Advisory CVE-2026-40372 – ASP.NET Core Elevation of Privilege Executive Summary: A bug in Microsoft.AspNetCore.DataProtection 10.0.0-10.0.6 NuGet packages can give an attacker th...

github.com
4
10
778
🚀 New in IdentitySuite: the Dashboard is here! Logins, tokens, certificates, locked accounts — everything you need to monitor your auth server, in one place. Real-time trends, security alerts, and a full admin audit trail. At a glance. ⚡ #identitysuite #openiddict #aspnetcore
1
1
100
👉 identitysuite.net/documentat…

What's New in IdentitySuite

Discover the latest features and enhancements introduced in IdentitySuite.

identitysuite.net
1
43
Deploy a self-hosted OpenID Connect server on Docker PostgreSQL with IdentitySuite. Complete guide with Dockerfile and docker-compose. 🚀 identitysuite.net/blog/ident… #dotnet #docker #postgresql #openiddict #aspnetcore

Deploy IdentitySuite on Docker: Complete Guide with PostgreSQL

Step-by-step guide to deploying IdentitySuite on a Linux Docker container with PostgreSQL. Covers project setup, Dockerfile, docker-compose, and full IS configuration.

identitysuite.net
1
2
298
Just published a complete guide to deploying IdentitySuite—a self-hosted OpenID Connect server built on proven tech: - Openiddict - ASP.NET Core Identity - .NET 10 identitysuite.net/blog/ident… #identitysuite #openiddict #aspnetcore

ASP.NET Core, an open-source web development framework | .NET

Build web apps and services that run on Windows, Linux, and macOS using C#, HTML, CSS, and JavaScript. Get started for free on Windows, Linux, or macOS.

dotnet.microsoft.com
4
10
998
IdentitySuite@spin973
16 Dec 2025
Just blogged: IdentitySuite 2.0 is out 🎉#IdentitySuite #Openiddict #ASPNetCore identitysuite.net/blog/ident…

Introducing IdentitySuite 2.0

Discover what's new in IdentitySuite 2.0: upgrade to .NET 10 and passkey authentication.

identitysuite.net
2
5
525
IdentitySuite retweeted
.NET
@dotnet
14 Nov 2025
✨ NOW on Community Day at .NET Conf 2025 ✨ Rolling Your Own SSO: A Practical Guide with OpenIddict 11:30 PM - 12:00 AM PST Join us LIVE ➡️ msft.it/6013tJkXB Follow the conversation: #dotNETConf
dotnet conf title slide. text reads: Now on .NET Conf 2025 Community Day Rolling Your Own SSO: A Practical Guide with OpenIddict Dustin Kingen November 13, 11:30 PM - 12:00 AM PST

ALT dotnet conf title slide. text reads: Now on .NET Conf 2025 Community Day Rolling Your Own SSO: A Practical Guide with OpenIddict Dustin Kingen November 13, 11:30 PM - 12:00 AM PST
2
6
3,784
IdentitySuite@spin973
29 Sep 2025
Secure your SPA in minutes 🚀 With IdentitySuite, powered by the rock‑solid @OpenIddict library, you get enterprise‑grade OpenID Connect for Blazor, Angular & React. 👉 identitysuite.net/blog/ident… #IdentitySuite #OpenIddict #OpenIDConnect #Blazor #Angular #React #ASPNetCore

Authentication Made Easy with IdentitySuite

Learn how to simplify authentication with IdentitySuite in this comprehensive step-by-step guide. Deploy a production-ready OIDC server and secure your SPA applications with Angular, React, and...

identitysuite.net
2
3
464
IdentitySuite@spin973
17 Aug 2025
Version 1.1.0 released with new features: - Configurable rate limiting - Revamped OIDC/OAuth2 endpoints for OpenID Connect certification - Updated OpenIddict to 7.0 identitysuite.net/documentat…

What's New in IdentitySuite

Discover the latest features and enhancements introduced in IdentitySuite.

identitysuite.net
2
3
402
Load more