Contents tagged with WIF
Some years ago I published list of Microsoft training kits for developers. Now it’s time to make a little refresh and list current training kits available. Feel free to refer additional training kits in comments.
Today I tried to put up simple ASP.NET MVC application to DiscountASP shared hosting. It all started well but ended with most strange security and server architecture I’ve ever seen. I don’t want to insult them but it is really shocking and unexpected when some of top hosting providers just spits on web security.
This is my first webcast on Windows Identity Foundation (WIF) and it will give you brief overview of this technology. I will tell you about how I found WIF, what is claims-based authentication, what tools are available and how you can use WIF in your systems. This is no-code overview and you can expect demos and code from my next WIF webcasts.
NB! This is my first webcast I have ever made so please forgive me if it is not as professional as you may expect. I hope you will still enjoy it :)
If you cannot see video then click here: Windows Identity Foundation - Part I: Introduction
I would really appreciate if you give me feedback about this webcast. All feedback – positive or negative – is very welcome as I really want to improve my skills on making great webcasts. Feel free to leave me your feedback here as comments of this post.
Here you can find resources related to my Windows Identity Foundation series.
PowerPoint 2010 | 1453 KB
- Windows Identity Foundation @ MSDN
- System.IdentityModel documentation
- Windows Identity Foundation documentation
- Windows Identity Foundation reference
- Here is list of supported standard available
- Windows Identity Foundation SDK
- Windows Identity Foundation
- Identity Developer Training Kit
- Access Control Service Samples and Documentation (Labs)
I started using Windows Identity Foundation when I made my first experiments on Windows Azure AppFabric Access Control Service. I wanted to generalize the way how people authenticate theirselves to my systems and AppFabric ACS seemed to me like good point where to start. My first steps trying to get things work opened the door to whole new authentication world for me. As I went through different blog postings and articles to get more information I discovered that the thing I am trying to use is the one I am looking for.
As best security API for .NET was found I wanted to know more about it and this is how I found Programming Windows Identity Foundation.
Programming WIF focuses on architecture, design and implementation of WIF. I think Vittorio is very good at teaching people because you find no too complex topics from the book. You learn more and more as you read and as a good thing you will find that you can also try out your new knowledge on WIF immediately.
After giving good overview about WIF author moves on and introduces how to use WIF in ASP.NET applications. You will get complete picture how WIF integrates to ASP.NET request processing pipeline and how you can control the process by yourself. There are two chapters about ASP.NET. First one is more like introduction and the second one goes deeper and deeper until you have very good idea about how to use ASP.NET and WIF together, what issues you may face and how you can configure and extend WIF.
Other two chapters cover using WIF with Windows Communication Foundation (WCF) band Windows Azure. WCF chapter expects that you know WCF very well. This is not introductory chapter for beginners, this is heavy reading if you are not familiar with WCF. The chapter about Windows Azure describes how to use WIF in cloud applications.
Last chapter talks about some future developments of WIF and describer some problems and their solutions. Most interesting part of this chapter is section about Silverlight.
Who should read this book?
Programming WIF is targeted to developers. It does not matter if you are beginner or old bullet-proof professional – every developer should be able to be read this book with no difficulties. I don’t recommend this book to administrators and project managers because they find almost nothing that is related to their work.
I strongly recommend this book to all developers who are interested in modern authentication methods on Microsoft platform. The book is written so well that I almost forgot all things around me when I was reading the book. All additional tools you need are free. There is also Azure AppFabric ACS test version available and you can try it out for free.
Table of contents
Part I Windows Identity Foundation for Everybody
1 Claims-Based Identity
2 Core ASP.NET Programming
Part II Windows Identity Foundation for Identity Developers
3 WIF Processing Pipeline in ASP.NET
4 Advanced ASP.NET Programming
5 WIF and WCF
6 WIF and Windows Azure
7 The Road Ahead
Windows Identity Foundation (WIF) provides us with simple and dummy STS application we can use to develop our system with no actual STS in place. In this posting I will show you how to add STS support to your existing application and how to generate dummy application that plays you real STS.
Making Windows Identity Foundation (WIF) STS test application work with your solution is not as straightforward process as you can read from books and articles. There are some tricks and some configuration modifications you must do to get things work. Fortunately these steps are simple one.
I am building ASP.NET MVC application that uses external services to authenticate users. For ASP.NET users are fully authenticated when they are redirected back from external service. In system they are logically authenticated when they have created user profiles. In this posting I will show you how to force ASP.NET MVC controller actions to demand existence of custom user profiles.
If you are using AppFabric Access Control Services to authenticate users when they log in to your community site using Live ID, Google or some other popular identity provider, you need more than AuthorizeAttribute to make sure that users can access the content that is there for authenticated users only. In this posting I will show you hot to extend the AuthorizeAttribute so users must also have user profile filled.
In my last posting about AppFabric Labs Access Control Service I described how to get your ASP.NET MVC application to work with ACS. In this posting I will dig deeper into tokens and claims and provide you with some helper methods that you may find useful when authenticating users using AppFabric ACS. Also I will explain you little dirty secret of Windows Live ID.
I had Windows Azure training this week and I tried out how easy or hard it is to get Access Control Service to work with my ASP.NET MVC 3 application. It is easy now but it was not very easy to get there. In this posting I will describe you what I did to get ASP.NET MVC 3 web application to work with Access Control Service (ACS). I will show you also some code you may find useful.