Are there hardening guide or checklist available which can be used for production deployment?
I would be very interested in seeing this guide!!!
Not yet 馃槉 I will send some guide later, after next release. In the meantime you can check some another guides how to setup IS4 for production and .NET Core app as well. 馃憤
I guess all the best practices of .NET app would apply, but are there any mechanism built in the STS side that would black-list an IP after so many failed authentication attempts?
Would love to help out to prepare hardening guide etc. if needed.
I do not use any implementation for black-listing of IP addresses. 馃槉
For sure, please if you can - send a PR with your suggestions or steps how to setup the main parts for production deployment.
Thank 馃憤馃徏