Identity Management

Securing APIs is a critical step in building modern web applications. When your frontend uses Keycloak for authentication via OpenID Connect (OIDC), it’s essential to protect your backend API by validating the JWT tokens it receives. This post explains how to secure your API with JWT tokens issued by Keycloak, focusing on a Blazor Server frontend that handles authentication and passes the token to the API for authorization and expiration checks. Configure Keycloak for the nex

Integrating social media authentication into your applications can significantly improve user experience by simplifying login processes. In this second part of our series on Keycloak, I will walk you through how to set up Google and GitHub as identity providers. This will help you leverage Keycloak’s open source capabilities to enable secure, scalable authentication using OIDC standards, especially useful when working with modern frameworks like .NET 10. Why Use Google and Gi

When building modern web applications, managing user authentication securely and efficiently is a top priority. If you are a .NET developer working with Aspire and Blazor Server, you might have heard about Keycloak as a popular open-source identity and access management solution. Keycloak supports OpenID Connect (OIDC), making it a powerful tool to handle authentication without reinventing the wheel. This post is the first in a series where I’ll introduce you to Keycloak, exp