For some reason Microsoft defined URI escaping twice: Uri.EscapeDataString and HttpUtility.UrlEncode seem to cover the same need. There’s another pair: Uri.EscapeUriString and HttpUtility.UrlPathEncode which again seem to be redundant with each othe… Continue reading
The OSIS I5 OpenID interop testing is well underway. Last weekend while testing some OpenID relying party web sites, John Bradley happened upon a web site that failed a particularly alarming test. Further investigation revealed that the security ho… Continue reading
Download it now. Previously named DotNetOpenId in its v1.x and 2.x releases, the v3.0 release is rechristened DotNetOpenAuth to reflect its support for multiple authentication and authorization protocols. Sporting OpenID, OAuth and InfoCard support … Continue reading
OpenID itself is just an authentication protocol. It takes OpenID extensions to get more information about the user like their name or email address. In fact there are two popular extensions that can provide this kind of information: Simple Registr… Continue reading
DotNetOpenAuth, previously named DotNetOpenId, is getting nearer to its major 3.0 release. With beta 2, we have a security reviewed, feature complete library for .NET use of the OAuth and OpenID protocols. Although Beta 1 was very rough and was… Continue reading
If you’re writing an OpenID Provider, you should have a strong appreciation for the security of your customers’ identities that you will be protecting. One aspect of that protection is against replay attacks, where a man-in-the-middle sniffs the … Continue reading
As part of the OpenID protocol a relying party often establishes shared secrets (called ‘associations’) with identity providers that are used to verify identity assertions. It occurred to me that an OpenID relying party might easily introduce a m… Continue reading
The user experience of OpenID at Relying Party web sites is so important to get right. OpenID is right for your web site’s visitors – no doubt in my mind about that. But we need to make sure it’s very easy for your visitors to use so you don’t … Continue reading
Please support this project and make a donation today.
All contributions go toward hosting and maintenance fees. Check out what you are getting for free!!
Also, consider contributing financially toward a specific feature request.
StackOverflow Twitter Discussion Forum