Stormpath Blog

Stormpath and Nginx – OAuth 2.0 at the Gateway

At Stormpath, we care – a lot – about the craft of API development. We want to help developers focus on building robust, intuitive and scalable APIs, and let go of the worry and hassle of authenticating those services. Stormpath has long supported Token Authentication and API key management, so developers can offload API access …

Designing the Stormpath SDK for Asynchrony in .NET

We designed the Stormpath .NET SDK with asynchrony in mind. Since the goal of the SDK is to make network calls to the Stormpath API, it’s a great fit for the Task-based asynchrony pattern introduced in .NET 4.5. Every network method returns a Task<T>, which can be awaited to get the result. Native support for …

Announcing Stormpath’s Java SDK 1.0 Release

Big, big news, people: The Stormpath Java SDK has left release candidates behind and is now at 1.0! The goal for any Stormpath SDK has always been to make it super easy for developers to work with Stormpath using the latest in technologies and integrations. With the 1.0 release of our Java SDK, it’s a …

Watch: Token Authentication with ASP.NET Core

Token authentication a critical element of building scalable identity, authentication, and authorization management. The token-based approach is stateless, secure, mobile-ready, and designed to scale with the size of your user base (without additional burden on your servers). This Token Authentication webinar from Stormpath’s .NET Evangelist, Nate Barbettini breaks down both token verification and token generation …

Tutorial: Get Started with Xamarin in Visual Studio

Xamarin is a cross-platform technology that makes it possible to build native mobile apps for Android, iOS, and Windows Phone using C# and a shared codebase. Like its younger siblings NativeScript and React Native, it allows development teams to build mobile applications using the skills they already have, and spend less time writing code for …

What’s New in Entity Framework Core 1.0?

As part of Microsoft’s effort to modernize and make the .NET framework multi-platform, modular and open-source, a new lightweight and extensible version of Entity Framework, Entity Framework Core 1.0, has been released. Nate recently shared a post on how he used Entity Framework Core to rapidly prototype and test ASP.NET Core applications. So, we thought …

7 Tips for Writing Better Unit Tests in Java

Testing is a very important aspect of development and can largely determine the fate of an application. Good testing can catch application-killing issues early on, but poor testing invariably leads to failure and downtime. While there are three main types of software testing: unit testing, functional testing, and integration testing, in this blog post, I …

Watch: Mobile Authentication for iOS Applications

When building an iOS app, figuring out how to handle mobile authentication is always a huge challenge. It’s often the last thing you and your team want to think about, so unfortunately, teams often ship apps with weak user and authentication security in the name of speed. In a world where security and privacy matter …

Watch: No-Code SAML Support for SaaS Applications

SAML (Security Assertion Markup Language) is an XML-based standard for securely exchanging authentication and authorization information between entities — specifically between identity providers, service providers, and users. Stormpath supports SAML login without any XML. You simply configure the appropriate language or framework-specific SDK and the Stormpath Admin Console. From there, your application can consume SAML …

5 Ways to Build Routing in ASP.NET Core

5 Ways to Build Routing in ASP.NET Core

In software development, routing serves to map all incoming requests to handlers and generate the URLs used in responses. In ASP.NET Core, routing has been rewritten from the roots up. Previously, routing with MVC and Web API was very similar, but both were using different frameworks (and code) to do the same thing. An important …

Watch: JWTs in Java for Microservices and CSRF Prevention

A microservices architecture connects many independent processes that communicate with one another over an API, or multiple APIs. These processes, and there are often a lot of them, need to exchange information and each communication exposes your application to vulnerabilities and latency. In this presentation, Stormpath Java Evangelist Micah Silverman gives an overview of the …

Follow Us