Scott Brady
@scottbrady91
Followers
2K
Following
3K
Media
47
Statuses
1K
I help developers learn OAuth and web security (he/him) https://t.co/PXrzF4Xx3A
Bristol, United Kingdom
Joined April 2009
New Pluralsight course! 🎉 Learn how to use JWTs securely in my latest course: JWT Fundamentals. #pluralsight
scottbrady.io
Learn how to use JWTs securely with my latest course on Pluralsight: JWT Fundamentals.
0
1
9
This is my account on Mastodon - - verified by @twittodon_com
hachyderm.io
16 Posts, 18 Following, 159 Followers · I help developers learn OAuth and web security (he/him). I mostly toot about identity, ASP.NET Core, engineering management, and cats.
0
0
2
Understanding JSON Web Encryption (JWE) - learn about the JWE format, why you need both JWE & JWS, and what encryption algorithms you'll be able to use.
scottbrady.io
Learn how JSON Web Encryption (JWE) works with a walkthrough of the token format, best practices, and the encryption algorithms available to you.
0
4
22
RT @SteveSyfuhs: Periodic reminder that if your attack requires that you first somehow acquire the secret key to something, you have not in….
0
16
0
RT @swagitda_: CamperBob2 on HN is the hero we deserve. Don’t mistake Rule of Cool for likelihood. (also, love to see the “Security Theate….
0
10
0
RT @pamelarosiedee: - a one-stop list of RFC numbers, nicknames and links to OAuth 2.0 specifications. Quick to scr….
0
12
0
RT @openid: The OpenID Foundation is excited to announce the 2022 Kim Cameron Scholarship. Learn more about the opportunity to receive a sc….
0
10
0
Step-up authentication with OAuth and OpenID Connect: how to trigger step-up authentication using open standards
scottbrady.io
Learn how to implement and trigger standards-based step-up authentication using OAuth, OpenID Connect, and SAML.
0
3
5
RT @fraabye: People still ask me questions about SSO for #Umbraco after my @codegarden 2017 talk. My code hasn't been updated for ages and….
scottbrady.io
How to log into an Umbraco website as an end-user via an external SSO solution such as IdentityServer, Google, or Auth0.
0
4
0
Understanding identity tokens: a deep dive into OpenID Connect's ID token. This is a reference piece, touching on who should use identity tokens, token format, validation, and when not to stuff them full of PII
scottbrady.io
A deep dive into OpenID Connect’s ID token, looking at what identity tokens are, what they are not, where to use them, and how to validate them.
1
7
34
RT @nurhakkaya14: Great #Umbraco v9 article by @scottbrady91! Fyi @umbraco ."#Umbraco backoffice #SSO with #OpenID Connect"..
scottbrady.io
How to log into the Umbraco backoffice using an external identity provider such as IdentityServer, Azure AD, or Auth0.
0
4
0
RT @moyix: We always want our code to "run faster". But rarely do we ask – what is it running from?.
0
207
0
How I use @polywork to overcome feelings of impostor syndrome
scottbrady.io
Polywork is a new social media platform that I’ve been using to track my recent achievements, both big and small, and to tackle my ongoing impostor syndrome.
0
2
9
RT @manicode: I’m having difficulty making a call for a cheatsheet regarding guidance to HMAC a password before sending it over TLS. Please….
github.com
What is the proposed Cheat Sheet about? HMAC can be used in a way that allows users to login with a password but never actually transmit the password to the server during login. When you consider t...
0
4
0
RT @DanielleD_Dev: Currently learning about OAuth 2.0. Great course on @pluralsight by @scottbrady91!. #oauth2 #….
0
1
0