Focus on implementing security - securely!
I build open-source security components and consult on how to achieve secure systems and implement security in .NET applications.
Consultant keywords
I'm an architect and developer - CV
I'm the architect and developer behind FoxIDs.
I believe that security is one of the most important foundational elements in an application and that an application or system should be built to be secure from the very beginning. I develop security components and samples in .NET and advise as a consultant on how to implement security correctly.
Anders Revsgaard
Security components with source code available
FoxIDs
FoxIDs is an Identity Services (IDS) supporting: login, OAuth 2.0, OpenID Connect and SAML 2.0.
FoxIDs can at the same time work as an authentication platform and a security broker where FoxIDs support translating between standards like SAML 2.0 and OpenID Connect.
FoxIDs is build on .NET and support Cloud and Private Cloud deployment:
- FoxIDs is available at FoxIDs.com as an Identity as a Service (IDaaS).
- You can deploy FoxIDs as your own private cloud.
The FoxIDs documentation and getting started guide.
Security components used by FoxIDs and others
ITfoxtec Identity
ITfoxtec Identity is an .NET open-source and free OAuth 2.0 and OpenID Connect 1.0 security component, NuGet.
The component support OAuth 2.0 and OpenID Connect 1.0 as both OpenID Provider (OP) / Identity Provider (IdP) and client and resource.
ITfoxtec Identity Saml2
ITfoxtec Identity Saml2 is an open-source and free SAML 2.0 security component.
The component adds SAML-P support for both Identity Provider (IdP) and Relying Party (RP) on top of the SAML 2.0 functionality implemented in .NET.
The ITfoxtec Identity Saml2 documentation and SAML 2.0 base NuGet, SAML 2.0 MVC NuGet and SAML 2.0 MVC Core NuGet.
ITfoxtec Identity Blazor
ITfoxtec Identity Blazor is an open-source and free OpenID Connect 1.0 security component for Blazor WebAssembly (WASM), NuGet.
The component makes it possible to do login and logout in a Blazor application with a JavaScript free .NET component using OpenID Connect 1.0 and Proof Key for Code Exchange (PKCE).
Non open-source security component
ITfoxtec AD FS Audit
ITfoxtec AD FS Audit [DA] extend the logging functionality in AD FS with support for logging the entire SAML 2.0 request and response in Windows Event Log.
The component logs the raw SAML 2.0 request and response including the signature proof for both Claims Provider and Relying Party.
With the component installed an AD FS support the logging policy stated by the Danish NemLog-in security service.
A selection of customers
ITfoxtec
Address
Marselis Boulevard 1
8000 Aarhus
Denmark
VAT: DK 30 59 65 01
Payments by bank
Jyske Bank
Account number: 5072-0001252901
BIC/SWIFT: JYBADKKK
IBAN: DK6350720001252901
Payments by PayPal
PayPal.Me/ITfoxtec
Open-source donations by PayPal
Donate
Anders Revsgaard
Consultant hourly rate
- 250EUR per hour (If you are in EU, please provide the VAT number to avoid VAT. There is no VAT if you are outside EU)
- In Denmark 1.800DKK per hour + 25% VAT
Email: [email protected]
Mobil: +45 50595808
Use cases
A look at what's possible with FoxIDs
FoxIDs as one single Identity Provider
You can benefit from having FoxIDs as one single identity provider when building applications. Development becomes simpler and more secure by using the same identity provider and security standards across all applications. Single sign-on is easier to achieve and APIs can be called securely from all applications.
FoxIDs will then handle user authentication with username+password and optionally MFA or transfer user ID's from users authenticated in an external identity provider such as Azure AD, AD FS, IdentityServer, Google or Facebook or others.
The application can choose how the user should log in by setting a parameter.
Translate SAML 2.0 to OpenID Connect
You can use FoxIDs to translate from SAML 2.0 to OpenID Connect. Then FoxIDs handles the SAML 2.0 traffic to the Identity Provider (IdP) and your application connects to FoxIDs with OpenID Connect.
SAML 2.0 is an old standard with its shortcomings, and therefore it is often a better choice to use OpenID Connect in your application.
Simplify NemLog-in connection
With FoxIDs, connecting to NemLog-in is easy by letting FoxIDs handle the NemLog-in connection without worrying about the complexity. FoxIDs handles everything related to the connection to NemLog-in and can translate the complex connection to a modern security standard like OpenID Connect.
Your application and possible API is then easy to connect using OpenID Connect, and the developer doesn't have to worry much about NemLog-in and all the requirements.