browse.develop.com
Browse.develop.com is a community that was established to collect and organize valuable web information. Our technical staff have selected and indexed information and courses that they feel will help you stay current on best practices across the SDLC.

3 Articles match "STS","WCF"

Related DevelopMentor Courses MORE
Essential Windows Communication Foundation 3.5 - WCF
Windows Communication Foundation (WCF) replaces previous technologies such as.NET remoting, ASMX, and COM+. Because it incorporates web service standards, WCF enables interoperability with other platforms such as Java/Unix. Day 1 Service-Oriented Architecture WCF encourages you to write service oriented applications. This first module introduces you to SOA which is the key to understand why WCF works the way it does. ? WCF Overview and Architecture In this module, we learn what a WCF service is. WCF offers another program model at a lower level.
DevelopMentor Courses - Friday, April 16, 2010
READ MORE
Advanced Windows Communication Foundation
Windows Communication Foundation (WCF) replaces previous technologies such as.NET remoting, ASMX, and COM+. Because it incorporates web service standards, WCF enables interoperability with other platforms such as Java/Unix. Day 1 Asynchronous Processing WCF supports asynchronous IO via operation contracts with the common Begin/End pattern. WCF includes the "Web Programming Model" which allows building Restful services with an easy to use API. Finally, we learn how authorization works in WCF, including impersonation and role-based security. Starting with.NET 3.5,
DevelopMentor Courses - Monday, March 1, 2010
READ MORE
Essential Windows Communication Foundation
Windows Communication Foundation (WCF) replaces previous technologies such as.NET remoting, ASMX, and COM+. Because it incorporates web service standards, WCF enables interoperability with other platforms such as Java/Unix. Day 1 Service-Oriented Architecture WCF encourages you to write service oriented applications. This first module introduces you to SOA which is the key to understand why WCF works the way it does. ? WCF Overview and Architecture In this module, we learn what a WCF service is. WCF offers another program model at a lower level.
DevelopMentor Courses - Friday, June 12, 2009
READ MORE

16 Articles match "STS","WCF"

The Latest from DevelopMentor MORE
A more elegant way of embedding a SOAP security header in Silverlight 4
The current situation with Silverlight is, that there is no support for the WCF federation binding. Requesting the token from an STS is not really the bad part, sending it along with outgoing SOAP messages is what’s a little annoying. It seems that starting with SL4 there is more support for traditional WCF extensibility points – especially IEndpointBehavior , IClientMessageInspector. This means that all security token related interactions have to be done manually. So far you had to wrap all calls on the channel in an OperationContextScope wrapping an IContextChannel.
www.leastprivilege.com - Thursday, May 13, 2010
READ MORE
Using Silverlight to Access WIF secured WCF Services (Part 2)
am focusing here purely on the SL initiated active STS/RP communication scenario and the raw APIs. cache.AddTokenToCache( "myRP" , args.Result); }; client.IssueAsync(rst); Using a Token to authenticate with a WCF Relying Party. This allows calling a WCF service like this: private void CallService(). {. The trick here again is, that the client stack is configured for no security at all, whereas the WCF service uses a federation binding (with SecureConversation turned off). thought I give this another shot with the new SL/WIF integration. KeyTypes.Symmetric). {.
www.leastprivilege.com - Sunday, March 21, 2010
READ MORE
Using Silverlight to Access WIF secured WCF Services
Another technology that comes up very often is Silverlight – and especially the “story” of Silverlight and WCF/WIF. This back-end service requires an issued token from a STS. Those of you with WCF background will say: “that’s what the federation bindings in WCF are for”. Since Silverlight has no support for WS-Trust, we must find another way to request a token from a STS. Some remarks here: Since you cannot do the proof of possession crypto in Silverlight, you need to request bearer tokens from the STS. The STS roundtrip is a cross-domain request.
www.leastprivilege.com - Wednesday, October 28, 2009
READ MORE
  • The Best from DevelopMentor MORE
  • (SAML) Token Creation in a Geneva STS
    By default, Geneva STS developers are quite shielded from the SAML creation process – you simply derive from SecurityTokenService and implement GetScope and GetOutputClaimsIdentity , and the rest gets done by the framework. In the current bits, the STS pipeline looks like this: GetScope. Tags: ASP.NET;WCF;IdentityModel But if you need more control over the generated tokens, it’s worthwhile to have a closer look. After that the descriptor is passed on to a SecurityTokenHandler that creates the security token. Must be implemented. CreateSecurityDescriptor. GetIssuerName.
    www.leastprivilege.com - Saturday, November 22, 2008
    READ MORE
  • Using Silverlight to Access WIF secured WCF Services
    Another technology that comes up very often is Silverlight – and especially the “story” of Silverlight and WCF/WIF. This back-end service requires an issued token from a STS. Those of you with WCF background will say: “that’s what the federation bindings in WCF are for”. Since Silverlight has no support for WS-Trust, we must find another way to request a token from a STS. Some remarks here: Since you cannot do the proof of possession crypto in Silverlight, you need to request bearer tokens from the STS. The STS roundtrip is a cross-domain request.
    www.leastprivilege.com - Wednesday, October 28, 2009
    READ MORE
  • Geneva is the new WCF Security
    Geneva has evolved to not only a an extension to WCF/ASP.NET for STS/token related things - it also changes how base WCF security works - to the better IMO. Another big simplification with Geneva comes to custom token/credential types (ever tried adding a new credential type of WCF? So in summary - Geneva replaces parts of the WCF security system, simplifies it and makes it easier to extend - even if you are not using a security token service. Tags: IdentityModel;WCF Let me give you an example: Trusted certificate issuers. like that.
    www.leastprivilege.com - Thursday, October 30, 2008
    READ MORE
  • STS? Available!
    In my Post STS? Tags: CardSpace;IdentityModel;WCF Coming Soon! linked to information about the upcoming framework for writing STSes (and more) from Microsoft. Unfortunately this is not yet available. Along with Barry and David I am very happy to announce SharpSTS - a C# library for developing Information Card security token services. You can find the source code on Codeplex and a demo website here. Don't expect a "click setup.exe and everything is fine" installation experience. There is still a lot of work to do. If you want to contribute or have feature ideas, leave me a comment.
    www.leastprivilege.com - Monday, March 10, 2008
    READ MORE
  • Updated Starter STS
    I just uploaded a minor update to the Starter STS sample to codeplex. Tags: IdentityModel;ASP.NET;WCF This release adds more options for realm checking (see the allowKnownRealmsOnly config switch) as well as Information Card issuance. As always – feedback is welcome! link].
    www.leastprivilege.com - Wednesday, June 17, 2009
    READ MORE
  • Using SAML as a Client Credential Type in WCF (with Geneva)
    As I said in my previous post, SAML is an extensible and flexible token type - but not very accessible in plain WCF. Even better, Geneva has some client side plumbing for WCF that lets you use the generated token for service calls in a quite straightforward fashion. The service receiving this credential could be a normal WCF service or a STS that issues tokens based on the client credential. After wiring up the new token handler in the WCF service you get access to the claims in the operation via IClaimsPrincipal as usual. Tags: IdentityModel;WCF
    www.leastprivilege.com - Monday, March 9, 2009
    READ MORE
  • Using the.NET Access Control Service with Geneva
    The sample uses the “old” WCF plumbing to process tokens and create claims based on that. compat STS) at the ACS. Tags: ASP.NET;IdentityModel;WCF If you haven’t checked out the.NET Access Control Service yet – I can highly recommend it! Justin did two talks about it at PDC: Access Control Service in.NET Services. Access Control Service Drilldown. In the 2nd talk Justin showed how to use and process claims coming from the ACS rules engine in your own services. You can find this code in the “CardSpace Calculator” sample in the ACS SDK. Issuer Registry. return "[link] ; }.
    www.leastprivilege.com - Thursday, December 11, 2008
    READ MORE