Please turn JavaScript on
Find more feeds
Duende Software Official Site icon

Duende Software Official Site

Want to keep yourself up to date with the latest news from Duende Software Official Site?

Subscribe using the "Follow" button below and we provide you with customized updates, via topic or tag, that get delivered to your email address, your smartphone or on your dedicated news page on follow.it.

You can unsubscribe at any time painlessly.

Title of Duende Software Official Site: "Duende Software - Identity and Access Management for .NET"

Is this your feed? Claim it!

Publisher:  Unclaimed!
Message frequency:  0.42 / day

Message History

Your Identity, Your Terms: Duende's Modular Identity Infrastructure and v8.x Release
Today marks the most significant expansion of Duende’s offerings in our history. We’ve listened to you on customer success calls, during support discussions, and at conference booths. You’ve told us you need more comprehensive and responsive identity solutions, so we’ve been busy building.

Read full story
Duende Spring Launch '26: Identity Infrastructure That Expands With You
For years, customers have come to Duende for one thing: industry-leading OAuth and OIDC expertise codified into a .NET SDK. A token server they could run themselves, while they built their own user stores, admin tooling, and federation logic around it. This arrangement worked.

Read full story
SAML and OpenID Connect (OIDC): Coexistence, Not Competition

"Just use OIDC" is the most common incomplete advice in identity. It sounds reasonable. OIDC is newer, simpler, better for APIs and mobile, and backed by a specification that developers actually enjoy reading. But advice that ignores the world as it exists is not the best advice. The world has SAML everywhere: in enterprise SSO, in government federation, in healthcare identit...


Read full story
The 9 Components of SAML You Need to Know, Ranked by Importance

SAML 2.0 has been an OASIS standard since 2005, and it still underpins federated single sign-on across enterprise, government, healthcare, and education. The specification is large, but the components that matter in practice are finite. Here are the nine you need to understand, ordered from most to least critical.


Read full story
The Cost of NOT Implementing Financial-Grade Security

Bearer tokens are simple. PKCE is easy to skip. Pushed Authorization Requests feel like overhead. Everything works fine, right up until it doesn't. And when it doesn't, the costs aren't measured in engineering hours. They're measured in regulatory fines, breach notifications, and headlines that make customers look for alternatives.

Most teams evaluate security upgrades...


Read full story