Hi all, While i started to explore WIF, i have a doubt on the following: In the Windows Identification Foundation[WIF],looking on to Security Token Service[STS], i wish to know where the federation authentication token is being saved? I think its in browser cookie, if so can anyone please give me a insight about it? ...
Hello, I see that Federated Identity stores Security token to a cookie, after its first request to the STS(Secure Token Service). In that case if I disable cookie in my browser, how does it work. Does the authentication module again connects to the STS to retrieve the user information or will it throw any error ? Is there any way th...
Hello , Created a WCF service as a WebRole using Azure and a client windows application which refers to this service. The Cloud Service is refered to a certificate which is created using the "Hands On Lab" given in windows identity foundation. The Web Service is hosted in IIS and it works perfect when executed. I've created a client wi...
I have a passive STS set up for a new application I'm working on. I've noticed that when a user's session expires, the user is still authenticated. I would have thought that when the session expires, the user would no longer be authenticated. My boss discussed this with me as I am currently charged with setting up the authentication. ...
I've been programming with claims-based authentication for some time now with Windows Identity Foundation. It appears to me that in Windows Identity Foundation, once a user is logged in, the claims are basically strings of information that describe the user. With the old role-based authentication, I could say that a user is or is not a...
Two questions: 1) How/where do I set the lifetime of the session cookie in my web application when using an STS to get claims? From what I can tell, it seems I can only do this programmatically in the ServiceConfigurationCreated event. 2) How/where can I make sure that the expiration is sliding? ...
I have installed the Windows Identity Foundation but can't find the Microsoft.IdentityModel dll. According to the Azure Hands-on-Labs it should just be in Add Reference in VS2010. However it's not there. I also looked in c:\Program Files(x86)\Windows Identity Foundation* and it's not in there (or the 64 bit program files folder). Help!...
I have a console application to download a file from a SharePoint site. The sharepoint site uses claims based authentication. This code throws a 403 Forbidden exception. The specified Network credential has full access to the site, and is able to download the same file from a browser. WebClient webClient = new WebClient(); webClient.C...
Can anyone expalin me how to dynamically ger the Role from a DB table instead of hard coding it in the code. ClaimsIdentity outputIdentity = new ClaimsIdentity(); outputIdentity.Claims.Add(new Claim(System.IdentityModel.Claims.ClaimTypes.Name, principal.Identity.Name)); outputIdentity.Claims.Add(new Claim(ClaimTypes.Role...
I needed to install IdentityTrainingKitApril2020.VS2010, it made me install WindowsIdentityFoundation-SDK-4.0. But setup WIF SDK fails with this message : "Setup has detected that .NET Framework 4.0 is not installed on the system. Please choose the correct WIF SDK(3.5/4.0) installer based on the version of the .NET Framework you inte...
Hello All, I am developing an Asp.Net MVC website using Windows Identity Foundation and STS website for authentication. it works fine as whenever a user tries to access a URL, it redirects to STS website if that session is not authenticated. Now I want to add a page in the application which should be available without authenticating in...
Following the instructions here: http://msdn.microsoft.com/en-us/library/ee517277.aspx, I am trying to set up a WCF service to use WIF. When I try to instantiate the ServiceHost, the following exception is thrown: The type 'Microsoft.IdentityModel.Configuration.ConfigureServiceHostBehaviorExtensionElement' registered for extension '...
I am running into the following error when attempting to parse my token: Property name: 'certificateReference' Error: 'ID1025: Cannot find a unique certificate that matches the criteria. StoreName: 'My' StoreLocation: 'LocalMachine' X509FindType: 'FindByThumbprint' FindValue: '41a8a59e537d4a00a8c4fa8dc2522388dbd13d27' The section in m...
I have a need to implement a STS-IP server for our web applications and services. The server will need to issue SAML tokens for the following scenarios: Business partner submits their SAML token which is converted to a SAML token with the claims required for our applications. This token is used to access our Web Applications and Serv...
Hello, I am building a multi-tenant application in Azure and planning to use Claims (WIF). I do not have ADFS hosted for issuing tokens to the users of my applications. What options do I have? Is there any commercial offering available? Thanks & Regards, Ajay ...
Is it possible to style the Windows Identity Foundation postback page? This is the page that comes across as blank after you successfully login and the url is similar to https://sts.address.com/?wa=wsignin1.0&wtrealm=https.... ...
Hi, I have Windows Identity Foundation based WCF service. I have issues with interoperability because it seems to be kind of hard to implement PHP or Perl client for such service due to all WS-* protocols. Currently it works like this: Client authenticates at STS (using username and password) and receives SAML token containing requir...
I'm trying to evaluate whether to use classic Principal based authorization vs. IdentityModel authorization. It seems like Microsoft is recommending the latter these days, but I haven't seen enough in terms of maturity or support for it. Specifically, I really like the ability to set a PrincipalPermissionAttribute and allow the framework...
I am currently implementing a Federated Authentication solution using: A passive STS for issuing tokens, a Website hosting a Silverlight application and WCF services for the Silverlight App. So far I am able: Get redirected to the STS Login and get redirected to the Website Display the claims on the website by accessing HttpContext.C...
Hi all, I'm currently working on a project where I'd like to use Claims based authentication (Using windows identity foundation) in one of my applications. The only snatch is.. the solution I develop also has to enable claims based access to a java based application. And since I'm a .net developer, i have no idea what technologies are...