And of course it's frustrating. There's research that shows that "Advertising as a Major Source of Human Dissatisfaction". Mailbird is adding to that dissatisfaction.
link.springer.com/chapter/10.1...
And of course it's frustrating. There's research that shows that "Advertising as a Major Source of Human Dissatisfaction". Mailbird is adding to that dissatisfaction.
link.springer.com/chapter/10.1...
That makes no sense -- what you're advertising is something I can't buy, since I already have the top-tier license. All it does is aggravate customers. The best ad for the product *used* to be the product itself.
27.02.2026 14:58 β π 0 π 0 π¬ 0 π 0So you're saying there's no license you offer that prevents in-app advertising?
27.02.2026 01:42 β π 0 π 0 π¬ 1 π 0
You're doing it again?!? I guess I bought the wrong one, so is there a different paid license whereby you don't have ads? I guess I can always go back to Outlook... I used to champion your product. You've ruined your brand as a result of this.
20.02.2026 00:45 β π 0 π 0 π¬ 1 π 0
Recording of my talk on passkeys in #aspnetcore at NDC Copenhagen is up! #dotnet
Also includes a pointer on how to add passkeys to Razor Pages for folks who aren't on the #Blazor train.
www.youtube.com/watch?v=P7eb... #dotnet
Why be a Duende Product Insider? Get a Direct Channel for deep technical talks, Early Access to features (Agentic AI, .NET 10), and Spec Authority on standards. For heavy-lifters solving the hardest identity problems.
β‘οΈ duende.link/discord
#DuendeInsiders #SecurityExperts
π‘οΈ BFF v4: Frontend Security Simplified
Frontend devs shouldn't handle tokens or refresh cycles. BFF keeps security on the server, eliminating XSS risks.
v4 adds multi-frontend support for operational sanity. Ditch the token burden entirely.
β‘οΈ duende.link/bff4b0b
@nbc10wjar.bsky.social Dan Jaehnig's questions to investigators during the brown investigation were ancillary, accusatory, inflammatory, and really unrelated to reporting the news. I wonder if the stations ownership is driving such behavior, as opposed to just honest journalism? please do better.
19.12.2025 03:28 β π 0 π 0 π¬ 0 π 0
DPoP is not shorthand for Danish pop music. πΆ
Instead, Demonstrating Proof of Possession (DPoP) is used to fight back against token replay attacks in OpenID Connect and OAuth.
Security Lingo Explained: duende.link/lgodpop
#SecurityLingo #dotnet
We published a new post: "Why Now is an Excellent Time for Backend For Frontend." With the complexity of modern SPAs and the need for robust cookie management, Duende's BFF v4 solves critical security issues at the architectural level.
Learn more: duendesoftware.com/blog/2025120...
If you're leveraging BFF v4, take 20 minutes to rewatch Erwin van der Valk's talk on Token Management and securing your backend-for-frontend implementations.
This is the best pattern for modern single-page application (SPA) security. Available now: πΊ
πΊ www.youtube.com/watch?v=6zMS...
Ever wondered how browsers determine what kind of content they're displaying? It's usually through the Content-Type header. But what happens when that's missing or incorrect? It can be a serious security risk!
Let's see how to fix this in #aspnetcore youtu.be/kSaSb2hBbyk #dotnet
Is 'Auth' just one thing? π€ Developers often use it as shorthand, but it's ambiguous!
Learn the critical difference between Authentication (AuthN) and Authorization (AuthZ) in our latest post: duende.link/lgoauth
#SecurityLingo #dotnet
Digging into the new Secure Gateway to AI. We detail how v7.4 implements RFC 8414 and DCR to manage AI agents securely; establishing a stable, secure, and future-proof MCP server architecture.
Learn more about protecting your Models: duende.link/is74b1b
The call for papers for NDC Security ends tomorrow. Come do your talk in Oslo: ndcsecurity.com/call-for-pap...
06.12.2025 21:27 β π 3 π 5 π¬ 0 π 0
Garish advertising in the paid version of Mailbird.
Garish, I say. Seriously, I'd imagine with the Premium license for your product this would not happen.
03.12.2025 19:10 β π 0 π 0 π¬ 2 π 0
Duende BFFv4 is available now! π¨ The #BFF security pattern saves the day! Rewatch Erwin van der Valk's demo on Token Management and applying Duende's backend for frontend. A must-watch for devs building modern apps. πΊ www.youtube.com/watch?v=6zMS...
#dotnet #security #identity #react #angular
The Duende IdentityServer v7.4 release is available! For those working with Model Context Protocol (MCP), this is the foundational security layer you've been waiting for. Read more here: duendesoftware.com/use-case-sec...
#aiagents #security #identity #ModelContextProtocol
Tomorrow: Duende IdentityServer v7.4 livestream launch event. Security leaders and architects, this is a deep dive into the .NET 10 LTS compatibility and implementing secure MCP for AI agents.
Final day to register: duendesoftware.com/webinars/due...
Claims and scopes describe user information in OpenID Connect.
Let's see how Duende IdentityServer handles consent, different client types, required vs. optional scopes, and what happens when a client doesn't get everything it asked for.
duende.link/97aeqlj π
#dotnet
Adding .NET 10 Passkey Support to Duende IdentityServer
π duende.link/berqe86
Learn how to add #dotnet 10 passkey support to a non-Blazor project such as MVC or Razor Pages.
#security #aspnetcore #identity #webauthn
Let's look into a crucial "defense-in-depth" mechanism: SameSite cookies. Learn how this powerful browser flag adds extra protection against Cross-Site Request Forgery (CSRF) attacks.
Strengthen your #aspnetcore web applications!
youtu.be/goQlKiynWXU #dotnet
> Paid users do see a few promo pop-ups per year
Disappointing. I thought I had paid to avoid the ads.
> you should be able to close them and they shouldnβt appear again
It's pretty garish and it doesn't seem to go away.
@mailbird.bsky.social Is there a setting to disable your advertisement in the paid version of mailbird for windows? The modal dialog is broken and never goes away, and makes the product unusable; I need to use task manager to kill the process.
Related, why is there an ad in your paid product? SMH
Stop struggling with diverse identity providers. π
A Federation Gateway, such as Duende IdentityServer, is the key to:
π Centralized Compliance
β‘οΈ Operational Agility
π€ Unified User Login
duende.link/8aefizq
#IdentityOrchestration #SSO #Security #dotnet
We built our own JWT Decoder tool, available at jwt.me! π§
Quickly inspect and validate your JSON Web Tokens. It features automatic public key (JWK) retrieval, inline claim explanations, and presenter mode.
Read all about it: duende.link/387skhq
#OAuth #OpenIDConnect #JWT #TokenValidation #dotnet
In this video, Christian Wenz dives deep into Cross-Site Request Forgery (CSRF), a simple yet devastating attack that has plagued web applications for years.
Learn what CSRF is, how it works, and how to defend against it in #aspnetcore
youtu.be/WUJrKw05YfI
#dotnet
Finally, #dotnet 10 is here!
Here are the new capabilities and features we are excited about. Expect passkeys, #opentelemetry additions,TLS for *.localhost, and more.
π duende.link/qet4wp9 #aspnetcore
Brace yourself, wΜΆiΜΆnΜΆtΜΆeΜΆrΜΆ #dotnet 10 is coming! βοΈ
Let's look at the new capabilities and features we are excited about for the upcoming .NET release in November. Expect passkeys, #opentelemetry additions,TLS for *.localhost, and more.
duende.link/qet4wp9 #aspnetcore
Secure your native applications, like mobile and desktop applications, using #IdentityServer π
In this video, we cover why in-app login pages are outdated, the role of the browser, the Duende OidcClient library, secure token storage, and more!
youtu.be/7_OzM1c-STk #dotnet