When testing my Verifiable Credentials (MS Entra Verified ID) tenants, I typically need a website to host the did-configuration.json and, when using did:web, a did.json file. Since these files need SSL access I can’t use azure BLOB storage.
What I end up using, and is very cheap (pennies on a dollar), is Azure Static websites, and an Azure CDN with a custom domain. These are the steps to set it up:
ION V1 was announced today.
ION is used in a decentralized identity network to be able to help resolve for example decentralized identifiers and find their public keys. This is one of the core differences with a traditional Identity Provider where you always need to go to the well-known endpoint to retrieve the location of the public keys and download the public keys there to see if the signatures of the tokens are correct.
The other day I was trying to troubleshoot an issue where I needed to know what the content of an ID token coming from AAD was for a mobile application. The application was setup to use code flow with PKCE and using fiddler to troubleshoot this didn’t work since AAD is protected with SSL pinning so trying to have fiddler be the man in the middle didn’t work out. It helped me figuring out what request was sent to the server but not the content of the response.
In short, you can access your UDM Pro with https://unifi.local and make the security warning go away.
I have been using my unifi hardware for some time at home now and I love it. The one thing that kept being annoying is accessing the cloudkey software over SSL. It always returning this warning: And if you approved and continued you still got this icon in your browser: I was reading Scott Helme’s blogpost how to setup SSL.
We have been delivering developer training on the Microsoft Identity platform around the world. We finally managed to hit the studio and get some of these recorded. One of the big changes we made over time is to steer away from protocol details more towards concepts and APIs. It’s like why explain how NTFS works while you only want to write a file to disk with an API.
The entire series from me and my colleage Kyle Marsh are worthwhile watching.
Today I started a new job. I am still working in Azure Identity as Program Manager. Still working in CxP (Customer and partner experience), but moving back to the @Scale team (they work with ISVs, Partners, SIs to get our Identity platform adopted at scale). I am going to work on DID or Decentralized Identities. Helping onboarding our partners to make sure we successfully get market adoption of this brand new technology.
I finally took the plunge and started to move my blog from Wordpress to Hugo. I had some issues recently where my Wordpress site didn’t work anymore. 1 issue was with the syntax highlighting for the code snippets, caused by an old plugin and new secure browser settings. Took me a while to fix. And recently the editor of Wordpress stopped working properly since there was a secure header setting changed on azure which broke some Javascript on the admin side of Wordpress.