Links/resources that changed my life:
Verifiable Credentials
- TypeScript - https://github.com/openwallet-foundation/credo-ts
- .Net Wallet - https://github.com/openwallet-foundation-labs/wallet-framework-dotnet
- React native wallet - https://github.com/openwallet-foundation/bifold-wallet
Enterprise
Cloud Architecture Materials
- https://github.com/Azure/Enterprise-Scale
- https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/landing-zone/ with nice visio drawing
Landing Zones
Software Architecture
- Architecture Styles Worksheet: https://www.developertoarchitect.com/downloads/architecture-styles-worksheet.pdf
2024
- Secure your website with the right security headers Mozilla and SecurityHeaders
- VC for Europeans
- eIDAS test site
- Decentralized Identifiers (DIDs) as an Identifier Metasystem
- Demystifying cookies and tokens
- Awesome Self-Sovereign Identity
- (Almost) Every infrastructure decision I endorse or regret after 4 years running infrastructure at a startup
ENTRA ID - from John Savill
- Workload Identity Protection
- Governance
- Managed ID
- App Registrations, Enterprise Apps and Service Principals
- PIM
2023
- Email vs Capitalism, or, Why We Can’t Have Nice Things - Dylan Beattie - NDC Oslo 2023
- GitHub - ACA-Landing-Zone-Accelerator
- Prepare your Azure Cloud Environment with the Cloud Adoption Framework
- πThe Software Architect Elevator
2022
- πDesigning Data-Intensive Applications
- PL Async Internals in .NET
- Advanced API and Integration Problems & Patterns - Udi Dahan - NDC Oslo 2022
2021
- Foxes
- π π₯ Designing Data-Intensive Applications
- πDatabase Internals
- Serverless Chats: Streaming Data at Scale Using Serverless with Anahit Pogosova Part 1
- Serverless Chats: Streaming Data at Scale Using Serverless with Anahit Pogosova Part 2
2020
IAM
- OCTA: OAuth 2.0 and OpenID Connect (in plain English)
- https://www.nango.dev/blog/why-is-oauth-still-hard
- https://developer.okta.com/blog/2019/10/21/illustrated-guide-to-oauth-and-oidc
- https://auth0.com/docs/authorization
- awesome-iam
- OAuth β the good Parts - Dominick Baier - NDC Oslo 2021 https://www.youtube.com/watch?v=y2Psj8ACZyw
Entra ID
- Newsletter: https://entra.news
- https://github.com/merill/awesome-entra
- big picture diagram https://github.com/msandbu/azuread
Tools
- Kleopatra - manage Yubikey certificates etc https://apps.kde.org/kleopatra/
- faking data and getting notification someone is accessing (credit card, AWS cred) https://canarytokens.org/generate
Testing
- https://oidcdebugger.com/debug
- https://chrome.google.com/webstore/detail/saml-devtools-extension/jndllhgbinhiiddokbeoeepbppdnhhio
MSAL | OpenID Connect | Azure ==> Authentication & Authorization
- MS Samples
- MSAL - Retry policies
- MSAL Logger
- Oauth - Native Flow Authorization Code Flow Diagram
- OpenID Connect Diagram - get token via confidential client
- Postman Oauth Entra ID Collection
- Default Azure Credentials
- Authentication with multiple identity providers
CIAM
Azure & Microsoft 365
π―π― blogs and people π―π―
π€π€ Workstation & Tools & IDE’s π€π€
Identity
- SMS online service to test OTP: https://anonymsms.com/
- Temporary Email Service (you can define your email address): https://www.minuteinbox.com/
- Postman Collection
Debbug JWT tokens (Open ID Connect flows)
Azure AD B2C
- VS Code + B2C extension + APP insights debugger
Software Development
- Mock Service (when you need to check the request payload ;) ) https://beeceptor.com/
- Security Headers check https://securityheaders.com/
Tunnel/proxy to the local environment
- ngrok.com - need to pay 10$ for features
- www.cloudflare.com Tunnel
- Visual Studio IDE built-in proxy
Other
Other
Ε»ywot programisty - sorry only for polish programmers π·ββοΈ