browse.develop.com
Browse.develop.com is a community that was established to collect and organize valuable web information. Our technical staff have selected and indexed information and courses that they feel will help you stay current on best practices across the SDLC.

2 Articles match "STS","WCF"

Related DevelopMentor Courses MORE
Advanced Windows Communication Foundation
In this course, you learn to: Understand the motivation and architecture behind SOA & WCF Create clients and services with WCF Expose your services using SOAP and REST Choose between different channels, bindings, and configuration options Host a service as a Windows service or in IIS/WAS Authenticate and authorize access to services Federate services using tokens and claims Span transactions across service boundaries Add reliability using transport and message mechanisms Extend WCF by writing custom behaviors and creating custom channels Advanced Windows Communication Foundation presents
DevelopMentor Courses - Monday, March 1, 2010
READ MORE
Essential Windows Communication Foundation
In this course, you learn to: Understand the motivation and architecture behind SOA & WCF Create clients and services with WCF Expose your services using SOAP and REST Choose between different channels, bindings, and configuration options Host a service as a Windows service or in IIS/WAS Deal with concurrency and sessions in WCF Handle errors in services Authenticate and authorize access to services Federate services using tokens and claims Span transactions across service boundaries Add reliability using transport and message mechanisms Extend WCF by writing custom behaviors and creating
DevelopMentor Courses - Friday, June 12, 2009
READ MORE

14 Articles match "STS","WCF"

The Latest from DevelopMentor MORE
Using Silverlight to Access WIF secured WCF Services
especially the “story” of Silverlight and WCF/WIF. token from a STS. Those Those of you with WCF background will say: “that’s what the federation bindings in WCF WCF are for”. token from a STS. This topic comes up quite often recently – so I hope the title is search engine friendly. Disclaimer: Disclaimer: At the time of this writing, the current version of Silverlight is v3 and
www.leastprivilege.com - Wednesday, October 28, 2009
READ MORE
Adding a REST Endpoint to a WIF Token Service
So I decided to a add a simple HTTP endpoint to my STS using the WCF web programming from WCF’s AuthorizationContext . STS using the static CreateSecurityTokenService method on the SecurityTokenServiceConfiguration class. Bearer }; var sts = new StarterTokenServiceConfiguration Sometimes it is useful to have a really simple way to acquire a token from a token service – without having to fiddle around with WS-Federation or WS-Trust.
www.leastprivilege.com - Friday, September 11, 2009
READ MORE
Defeating SSL
WCF e.g. This also means – if you are building a passive STS – you should not solely rely on Tags: IdentityModel;ASP.NET;WC Not a really new paper – but definitely recommended reading. Some lessons learned: Moxie is not really attacking SSL – but uses HTTP to bypass HTTPS. Switch to SSL as early as possible – but that might be too late already. Users never type
www.leastprivilege.com - Friday, July 10, 2009
READ MORE
  • The Best from DevelopMentor MORE
  • (SAML) Token Creation in a Geneva STS
    By default, Geneva STS developers are quite shielded from the SAML creation process – you simply derive from SecurityTokenService and implement GetScope and GetOutputClaimsIdentity , In the current bits, the STS pipeline looks like this: GetScope Must be implemented. Tags: ASP.NET;WCF;IdentityMode and the rest gets done by the framework. But if you need more control over the generated
    www.leastprivilege.com - Saturday, November 22, 2008
    READ MORE
  • Geneva is the new WCF Security
    Geneva has evolved to not only a an extension to WCF/ASP.NET for STS/token related things - it also changes how base WCF security works - to the better IMO. tried adding a new credential type of WCF? So in summary - Geneva replaces parts of the WCF security system, simplifies it and Let me give you an example: Trusted certificate issuers When doing client certificate based authentication you always had three choices
    www.leastprivilege.com - Thursday, October 30, 2008
    READ MORE
  • Using Silverlight to Access WIF secured WCF Services
    especially the “story” of Silverlight and WCF/WIF. token from a STS. Those Those of you with WCF background will say: “that’s what the federation bindings in WCF WCF are for”. token from a STS. This topic comes up quite often recently – so I hope the title is search engine friendly. Disclaimer: Disclaimer: At the time of this writing, the current version of Silverlight is v3 and
    www.leastprivilege.com - Wednesday, October 28, 2009
    READ MORE
  • Using SAML as a Client Credential Type in WCF (with Geneva)
    not very accessible in plain WCF. Even better, Geneva has some client side plumbing for WCF that lets you use the generated this credential could be a normal WCF service or a STS that issues tokens based on After wiring up the new token handler in the WCF service you get access to the claims Disclaimer For the motivation for this article please read this here
    www.leastprivilege.com - Monday, March 9, 2009
    READ MORE
  • Using the .NET Access Control Service with Geneva
    The sample uses the “old” WCF plumbing to process tokens and create claims based on compat STS) at the ACS your client obtains a token from the ACS (by sending their identity token) this token is used to authenticate with your service your service accepts tokens from the ACS and uses their claims for identity related work Tags: ASP.NET;IdentityModel;WC If you haven’t checked out the .NET NET Access Control Service yet – I can highly recommend
    www.leastprivilege.com - Thursday, December 11, 2008
    READ MORE
  • Federating with the .NET Access Control Service
    the steps I did to integrate a custom STS written with the Geneva framework. assumes you already have a working version of the SDK sample as well as a STS. Step 1: Registering the partner’s STS at your Access Control Service First you have to register the STS. need to specify three things: A display name for the STS. In my previous post I showed how to migrate the .NET
    www.leastprivilege.com - Thursday, December 11, 2008
    READ MORE
  • ClaimsAuthenticationManager in Geneva
    One of the things that Zermatt was lacking was a uniform way to look at incoming claims (either from an STS or from auto-converted authentication information). Tags: ASP.NET;IdentityModel;WC In Geneva we now have a piece of plumbing called the ClaimsAuthenticationManager which gets called on the first request when a token comes into your application.
    www.leastprivilege.com - Thursday, November 13, 2008
    READ MORE