In our previous deep dive, we explored the architecture of ApogeeDev Identity Provider, a custom enterprise-ready OIDC system built on ASP.NET Core, OpenIddict, and MongoDB. We focused heavily on securing user-facing applications using the Authorization Code flow with PKCE.

However, not all …

As developers, we often deploy incredible open-source tools or internal services that, unfortunately, lack built-in authentication. Leaving these dashboards exposed isn’t an option, and configuring a massive identity provider for a few lightweight internal tools can feel like overkill.
To …

When securing an ecosystem of apps, the immediate impulse is often to outsource authentication to a SaaS identity provider. While this “buy” option works well initially, many organizations eventually hit a wall: ballooning active-user pricing, rigid multi-tenancy limits, complex …