https://github.com/duendesoftware/products

The most flexible and standards-compliant OpenID Connect and OAuth 2.x framework for ASP.NET Core
https://github.com/duendesoftware/products

aspnetcore bff identity oauth oidc openid-connect security

Last synced: 5 months ago
JSON representation

The most flexible and standards-compliant OpenID Connect and OAuth 2.x framework for ASP.NET Core

• Host: GitHub
• URL: https://github.com/duendesoftware/products
• Owner: DuendeSoftware
• License: other
• Created: 2020-10-01T08:46:31.000Z (about 5 years ago)
• Default Branch: main
• Last Pushed: 2025-05-09T22:41:17.000Z (5 months ago)
• Last Synced: 2025-05-11T03:49:29.605Z (5 months ago)
• Topics: aspnetcore, bff, identity, oauth, oidc, openid-connect, security
• Language: C#
• Homepage: https://duendesoftware.com/products/identityserver
• Size: 52.7 MB
• Stars: 1,543
• Watchers: 41
• Forks: 379
• Open Issues: 17
• Metadata Files:
  • Readme: README.md
  • Contributing: .github/CONTRIBUTING.md
  • License: LICENSE
  • Codeowners: .github/CODEOWNERS

Awesome Lists containing this project

README

          
# Duende Products

[![License](https://img.shields.io/badge/License-Duende%20Software-blue)](https://duendesoftware.com/license)

[![GitHub Discussions](https://img.shields.io/github/discussions/DuendeSoftware/community)](https://github.com/orgs/DuendeSoftware/discussions)

This repository contains the core products developed by Duende Software.

### Duende IdentityServer

[![NuGet](https://img.shields.io/nuget/v/Duende.IdentityServer.svg)](https://www.nuget.org/packages/Duende.IdentityServer)

[![IdentityServer CI](https://github.com/DuendeSoftware/products/actions/workflows/identity-server-ci.yml/badge.svg)](https://github.com/DuendeSoftware/products/actions/workflows/identity-server-ci.yml)

Duende IdentityServer is a modern, standards-compliant OpenID Connect and OAuth 2.0 framework for ASP.NET Core, designed to provide secure authentication and API access control for modern applications. It supports a wide range of authentication flows, token types, and extension points for customization.

- [Documentation](https://docs.duendesoftware.com/identityserver/v7)

- [Source Code](./identity-server)

### Duende BFF (Backend for Frontend)

[![NuGet](https://img.shields.io/nuget/v/Duende.BFF.svg)](https://www.nuget.org/packages/Duende.BFF)

[![BFF CI](https://github.com/DuendeSoftware/products/actions/workflows/bff-ci.yml/badge.svg)](https://github.com/DuendeSoftware/products/actions/workflows/bff-ci.yml)

The Backend for Frontend (BFF) pattern is a security architecture for browser-based JavaScript applications. It keeps access and refresh tokens on the server and eliminates the need for CORS, providing improved security for your web applications.

- [Documentation](https://docs.duendesoftware.com/identityserver/v7/bff/)

- [Source Code](./bff)

### AspNet Core JWT Bearer Authentication Extensions

[![NuGet](https://img.shields.io/nuget/v/Duende.AspNetCore.Authentication.JwtBearer.svg)](https://www.nuget.org/packages/Duende.AspNetCore.Authentication.JwtBearer)

[![JwtBearer CI](https://github.com/DuendeSoftware/products/actions/workflows/aspnetcore-authentication-jwtbearer-ci.yml/badge.svg)](https://github.com/DuendeSoftware/products/actions/workflows/aspnetcore-authentication-jwtbearer-ci.yml)

Extends the ASP.NET Core JWT Bearer authentication handler with support for OAuth 2.0 Demonstrating Proof-of-Possession (DPoP), enhancing security for bearer tokens by proving possession of a private key.

- [Documentation](https://docs.duendesoftware.com/identityserver/v7/apis/aspnetcore/dpop/)

- [Source Code](./aspnetcore-authentication-jwtbearer)

## License

By accessing the Duende Products code here, you are agreeing to the [licensing terms](https://duendesoftware.com/license).

## Contributing

Please see our [contributing guidelines](/.github/CONTRIBUTING.md).