Duende IdentityServer

As Duende reference partners, we provide consulting, development and support services to build identity and control solutions for your modern applications.

We take care of integrating the knowledge and what is necessary to guarantee results through a team of specialists who offer the flexibility, knowledge, and experience necessary to provide real business results with Duende products.

We provide consulting and support services for Duende products, designed to provide a common way to authenticate requests to all of your applications, whether they’re web, native, mobile, or API endpoints.

Duende IdentityServer
At any stage of your project.

  • Assessment, Advice, and Guidance.
  • Security architecture.
  • Programming.
  • Troubleshooting.
  • Code review and improvement.
  • Security protocol training.

Development - Project
If you do not have the expertise to implement your own security solutions.

  • Proof of concept development.
  • Implementation of Duende IdentityServer.
  • Implementation of identity management products.
  • Complete production-ready securised solutions.

For your deployed Duende IdentityServer solution

  • Early response for issues.
  • Health check of deployment.

Build identity and access control solutions for modern applications

Contact us to know more
Smart city
Implement any business logic
  • Authentication & API Access
    Authentication is needed when an application needs to know the identity of the user. Typically applications manage data on behalf of the user and must ensure access only to the allowed resources.

    OpenID Connect is the newest and most widely deployed authentication protocol. Built for mobile application scenarios right from the start and designed to be API friendly, it is considered to be the future since it has the most potential for modern applications.

    Applications communicate with APIs using the application identity, or delegating the user’s identity. Sometimes both methods need to be combined. OAuth2 is a protocol that allows applications to request access tokens from a security token service and use them to communicate with APIs. This delegation reduces complexity since authentication and authorization can be centralized.

  • OpenID Connect and OAuth 2.0 – Combined
    OpenID Connect is an extension on top of OAuth 2.0. The two fundamental security concerns, authentication and API access are combined into a single protocol, often with a single round trip to the security token service.

    Duende IdentityServer implements these two protocols and is highly optimized to solve the typical security problems of today’s mobile, native, and web applications. It combines OpenID Connect and OAuth 2.0 as the best approach to secure modern applications for the foreseeable future.

  • How Duende IdentityServer can help – Middelware
    Multi-platform, multi-client, and highly-mobile users bring a new set of challenges, so the approaches of the past are no longer appropriate for modern applications.

    Any application has exposed functionality that needs to be secured against unauthorized use. This typically requires authenticating the user requesting a resource using one of several common protocols such as SAML2p, WS-Fed, or OpenID Connect. Communicating with APIs typically uses the OAuth2 protocol and its support for security tokens.

    Separating these critical cross-cutting security concerns and their implementation details from applications themselves ensures consistency and improves security and maintainability. Outsourcing these concerns to a dedicated product like Duende helps applications with the requirement to solve these problems.

  • Add spec-compliant OpenID Connect and OAuth 2.0 endpoints to an ASP.NET Core host
    Duende gives you full control and implementation capabilities over your UI, UX, any business logic, and data.

    It allows your ASP.NET Core website to act as an OpenID Provider and OAuth authorization server, offering both Single Sign-On (SSO) and API protection out of the box. Duende takes care of the protocol support, while leaving user authentication up to the developer.

    With Duende IdentityServer, customizing your workflows is not an afterthought since it allows adapting to your workflows and business rules without having to find complicated workarounds.

Last Ideas
OREIN is an Identity Provider based on OpenId.Connect and OAuth2 that allows you to unify the identity of your company’s users, preventing each application from managing user access independently.
Top Cybersecurity Trends 2022
Cyber-attacks have become one of the concerns of companies. Here are the most important trends that will mark the future for companies in terms of cybersecurity.
Enjoy now all our talks and trainings | Free access
Access our Knowledge section and enjoy talks focused on all kinds of technologies and for all kinds of profiles.