Hi, I'm Scott Brady
I help developers learn about OAuth and web security.
I’m an engineering manager and software developer specializing in OAuth, FIDO2, web security, and ASP.NET Core. More about me.
Read my blog to learn more about OAuth, authentication, and ASP.NET Core security.
Subscribe to my newsletter to get monthly digests of new content.
Follow me on twitter to get instant updates for new content.
Watch my Pluralsight courses to learn about OAuth, SAML, and ASP.NET Core authentication.
What's new?
Catch up with my newest and recently updated articles. Stay up to date by subscribing to my newsletter, RSS feed, or following me on Twitter.
-
・ New!
Book notes & reflections: The Art of Leadership
An overview of the book 'The Art of Leadership' by Michael Lopp. Including some of my key takeaways, how they relate to my own experience, and what I am trying to implement as a result.
Read more
-
JWT creation and validation in Python using Authlib
Learn how to create and validate JSON Web Tokens (JWTs) in Python using the Authlib library, JWT security best practices, and claims validation.
Read more
-
・ Updated!
JSON Web Encryption (JWE) in .NET
Learn how to encrypt JSON Web Tokens with JSON Web Encryption in C#, .NET, and ASP.NET Core.
Read more
-
Understanding JSON Web Encryption (JWE)
Learn how JSON Web Encryption (JWE) works with a walkthrough of the token format, best practices, and the encryption algorithms available to you.
Read more
-
New Pluralsight Course: JSON Web Token (JWT) Fundamentals
Learn how to use JWTs securely with my latest course on Pluralsight: JWT Fundamentals.
Read more
-
・ Updated!
Don't use the OAuth password grant type
Learn why you should not use OAuth's Resource Owner Password Credentials (ROPC) grant.
Read more
Training Courses
Check out my latest training material on Pluralsight.
