Brent Schmaltz

Redmond, Washington, United States
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Brent Schmaltz is a principal software engineer with over two decades at Microsoft and 12 years of focused experience delivering identity and security libraries for .NET, OAuth, OIDC, JWT, SAML and related protocols. He led the development of widely used authentication SDKs—collectively downloaded billions of times and driving ~100K daily installs—and maintains both public and internal libraries that underpin Microsoft and third-party platforms. Deeply steeped in security engineering since the WCF Security days, he pairs rigorous threat-aware design with a knack for performance and simplicity: “layering the arrows should go one way.” An active contributor to AzureAD’s IdentityModel extensions, he added token replay protection and enhanced OpenID Connect session handling to strengthen real-world token validation. Based in Redmond, he brings a rare combination of protocol-level expertise, production-scale library stewardship, and a mathematician’s attention to correctness.
code12 years of coding experience
job25 years of employment as a software developer
bookBSC, Mathematics and Computer Science, BSC, Mathematics and Computer Science at University of Victoria
languageslittle french, little spanish
github-logo-circle

Github Skills (9)

net10
asp-net10
validating10
dotnet10
validation10
validate10
validations10
jwt10
netframework10

Programming languages (12)

C#PowerShellTypeScriptJavaC++JavaScriptObjective-CPHP

Github contributions (5)

github-logo-circle
IdentityModel extensions for .Net
Role in this project:
userBack-end Developer
Contributions:18 releases, 1014 reviews, 1032 commits in 9 years 5 months
Contributions summary:Brent's contributions focused on the .NET framework with a focus on improving the IdentityModel extensions for .NET. The user implemented support for token replay. This was primarily achieved by removing claim filtering on JWT claims, adding the ability for the .Net code to parse the state and session state properties, and providing functionality for more robust token validation. The user also added a new class for handling OpenIdConnectSessionState and updated various test suites with these changes.
dotnetextensionscsharpazure-ad-b2cidentity
Contributions:88 commits in 6 months
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Brent Schmaltz