Claims based Authentication & Authorization: The Guide(blogs.southworks.net)

submitted by mwoloski(160) 2 years, 9 months ago

Eugenio announced yesterday the kickoff of a new guide from patterns & practices in which I’m collaborating: Claims based Authentication & Authorization Guide. This is not a new topic as Eugenio suggests in his blog, but it’s getting more and more attention because: •Technology is more mature, hence it’s easier to implement claim-based identity •Enterprises are failing to control the amount of different identity repositories, leading to higher provisioning/deprovisioning costs, security problems, etc. •End users want simpler user experiences and less passwords •The cloud makes all these even more challenging ... read more...

add a comment |category: Architecture |Views: 137

tags: Federation Geneva Identity ADFS Architecture another

Getting a token from ADFS (ex Geneva Server) using WCF(blogs.southworks.net)

submitted by mwoloski(160) 2 years, 10 months ago

I’ve been doing some tests to get a token from ADFS (Geneva Server) using Windows Identity Foundation WSTrustClient. In this case we are using the UserNameMixed endpoint that expects a WS-Security UsernameToken (notice the MessageCredentialType.UserName). .... read more...

add a comment |category: WCF |Views: 79

tags: WCF another

OpenID – WS-Fed Protocol Transition STS(blogs.southworks.net)

submitted by mwoloski(160) 2 years, 10 months ago

I will go straight to the point in this post. This is a possible architecture if you want to allow OpenID authentication in a claims-aware WS-Federation-compatible web application. In this architecture there are three actors... read more...

add a comment |category: Architecture |Views: 12

tags: Architecture another

.NET Service Bus – Remote Desktop over Firewalls!(blogs.southworks.net)

submitted by mwoloski(160) 2 years, 10 months ago

Today was holiday in Argentina but I had to work on some pending stuff (yeah, lucky me). I didn’t want to travel to the office but I had to access a SQL Server that was hosted at Southworks LAN and we don’t have inbound ports open to connect to our workstations through RDP (port 3389). So…. the .Net Service Bus came to the rescue! Last week David Aiken told me about this cool project hosted on codeplex http://socketshifter.codeplex.com. He told me “these people are streaming video over the service bus”… ... read more...

add a comment |category: Azure |Views: 36

tags: Azure another

Drink the red token – debug your claims-aware apps(blogs.southworks.net)

submitted by mwoloski(160) 2 years, 10 months ago

Another identity development widget brought to you by Vittorio’s team. This time it’s a very tiny control called SecurityTokenVisualizer that helps debugging claims-aware web applications. But the thing I like of this control is that it can also be used as a teaching tool, very useful for demos by the way. Last week we “dogfooded” it during the Iteration Review of an identity-related project and the audience made the click when we expanded the red small pentagon that shows the behind the scenes... read more...

add a comment |category: Security |Views: 9

tags: Geneva Identity Claim-Based-Identity Claims another

ASP.NET control for claims-aware apps(blogs.southworks.net)

submitted by mwoloski(160) 2 years, 10 months ago

Vittorio just announced it in his blog… we helped writing an experiment of raising the level of abstraction to work against claims. We created a server control that allows you to work with claims. There are three types of expression: Claim Value: set the value of a property with the value of a specified claim type ... read more...

add a comment |category: Security |Views: 16

tags: Geneva Identity Claims ASP.NET Claim-Based-Identity another