Browse by Tags

All Tags » WS-Federation (RSS)
WIF is an excellent framework that allows you to develop an STS in just a few minutes if you know exactly what you are doing of course :). In my role as consultant and architect in Tellago, I went through several projects in which some level of customization...
Posted by cibrax | 6 comment(s)
Filed under: , , ,
The Federation Authentication Module (FAM) shipped as part of WIF protects by the default the session cookies from being tampered with in passive scenarios using DPAPI. As I mentioned in the past, this technique simplifies a lot the initial deployment...
Posted by cibrax | 2 comment(s)
Filed under: , ,
I was wondering these days what would be the point in using WS-Passive when there is another simple sign-on solution, OpenID, that works really well and it’s getting a great adoption in the community. I can not say the same about WS-Passive, I haven’t...
Posted by cibrax | 4 comment(s)
Filed under: , ,
When SAML is used in conjunction with WS-Security, only an small piece of the token is encrypted, the proof key for the relying party. The rest of the token goes in plain text, that also includes the user's claims. < saml:Assertion > < saml:Conditions...
Posted by cibrax | 10 comment(s)
Filed under: , ,
OpenID and OAuth are today excellent solutions for "Single Sign On" (SSO) and "Authorization Delegation" respectively. They are, however, based on Http Redirections and therefore, tied to passive clients or commonly called web browsers. An interesting...
Posted by cibrax
More Posts