wif

问题 I have 2 ASP.Net applications: App1 and App2. Both applications are standard web apps that use WIF with the same ADFS server to authenticate the user, but App2 also exposes some WebAPI services. When the user goes to App1, App1 calls a service on App2 and I need to somehow call the App2 service with the user's token. If the user, themselves, were calling the service on App2, they would go through the same ADFS authentication and everything would work, but it's App1 that's calling the service

问题 Since I'm new to WIF. I want to create a custom STS on WIF, but these document only for .net 3.5: http://msdn.microsoft.com/en-us/library/ee748498.aspx and I can't find these template in vs 2012. So what should I do? Can anybody provide some information to me ? Thanks ! 回答1: The templates have been replaced with the Identity and Access Tool. Refer Windows Identity Foundation in the .NET Framework 4.5 Beta: Tools, Samples, Claims Everywhere There is no custom STS facility option anymore in the

问题 I need to create SAML token with custom data. There is a good looking example on MSDN but it's not compiling.... Have anybody got smt to read about it of working sample? Or is just adding new claims to Assertion collection? Do i need to describe them in federationmetadata? What other issues should i do? Would be glad to see any help. 回答1: I remember there's some custom SAML token generation code in one of the ACS samples. That would be a good place to start. You can download it here, look for

问题 Our site uses ADFS for auth. To reduce the cookie payload on every request we're turning IsSessionMode on (see Your fedauth cookies on a diet). The last thing we need to do to get this working in our load balanced environment is to implement a farm ready SecurityTokenCache. The implementation seems pretty straightforward, I'm mainly interested in finding out if there are any gotchas we should consider when dealing with SecurityTokenCacheKey and the TryGetAllEntries and TryRemoveAllEntries

问题 These are numerous technologies and buzzwords used for single sign-on with Microsoft services. Can someone explain ADFS, WIF, WS Federation, SAML, and STS (Security token service), including where and when each is being used. 回答1: From a big picture viewpoint: Assume an ASP.NET browser-based application that requires authentication and authorization. The application can roll its own or it can outsource it. WIF is a .NET library that allows ASP.NET to implement this outsourcing. It talks to an

问题 We have a piece of code which creates a SigningCredentials object to use to sign xml document by using SHA256 algorithm. It works with .NET 3.5 perfectly. However, when we upgrade our codebase to .NET 4.5, it stops working. Same code, same certificate! I have spent hours on debugging and searching on the internet without any luck. Could anyone please tell me what the problem here is? Thank you in advance. Code to create SigningCredentials: public SigningCredentials CreateSigningCredentials

问题 I'm trying to configure my ASP.NET app to accept a JSON Web Token (JWT) that is signed with a symmetric key. The STS isn't capable of using certificates for this, so we're using their symmetric key support. On my end, I'm using Microsoft's JWT Developer Preview. Unfortunately, I've not seen any examples of how to use that with a symmetric key. After some digging around with various tools, I found the NamedKeyIssuerTokenResolver and discovered that I can configure it to use a symmetric key.

问题 I have an MVC app that I would like to add claims-based authorization to. In the near future we will use ADFS2 for federated identity but for now we will used forms auth locally. Has anyone seen a tutorial or blog post about the best way to use WIF without an external identity provider? I have seen the following but it is a year old now and I think there should be an easier solution: http://geekswithblogs.net/shahed/archive/2010/02/05/137795.aspx 回答1: You can use WIF in MVC without an STS. I

问题 I'm using WIF to log in my appication. Everything seems to be ok (logging,redirecting to site etc),but when i try use User.Identity.Name in my cod exception is being thrown- User is null.Any ideas what i'm doing wrong? I work on VS 2012. Generated part in web.config looks like below: <system.identityModel> <identityConfiguration> <audienceUris> <add value="http://xxx/" /> </audienceUris> <issuerNameRegistry type="System.IdentityModel.Tokens.ConfigurationBasedIssuerNameRegistry, System

问题 i'm looking for a replacement of the Microsoft Federation Utility (FedUtil) from the WIF SDK, which allows me to automatically update (especially) the trustedIssuers list inside a web.config. The old FedUtil could to this with /m /u as parameters. Now the tool is included in VisualStudio and MS claims, there's no standalone replacement for FedUtil (refer to: http://msdn.microsoft.com/en-us/library/jj157089.aspx). My question is: Do i have to do the updates manually now or is there some