Monthly Archives: March 2009

Client Generated SAML Tokens to Interact with the Access Control Service

I recently wrote about generating SAML tokens at the client. Justin showed a similar approach at Mix to interact with the Access Control Service. Mix recording Blog post

Posted in ASP.NET, IdentityModel, WCF | Leave a comment

Get Skilled or get 0wned

Nice claim for a conference ;) I am happy to join my former colleagues from ERNW for their yearly Troopers conference in Munich. Two days full of top notch security talks – should be big fun. I’ll add my 2c … Continue reading

Posted in Uncategorized | Leave a comment

Geneva integration into ASP.NET

Geneva is integrated in ASP.NET/IIS using the standard IHttpModule extensibility mechanism. Geneva ships with three HTTP modules: ClaimsPrincipalHttpModule (already wrote about it here). WSFederationAuthenticationModule (implements WS-Federation authentication) SessionAuthenticationModule (implements session authentication) ClaimsPrincipalHttpModule is special – but the other two are … Continue reading

Posted in ASP.NET, IdentityModel | Leave a comment

Geneva integration into WCF

Having done quite a bit of WCF customization myself, it is fun to see how Geneva framework wires itself up into the WCF runtime. The high-level goals are as follows: route the token provisioning, serialization and authentication through the Geneva … Continue reading

Posted in IdentityModel, WCF | Leave a comment

Using SAML as a Client Credential Type in WCF (with Geneva)

DisclaimerFor the motivation for this article please read this here first. I am not advocating the use of client generated SAML tokens in general, and I also know that there is not much point in the client generating claims for … Continue reading

Posted in IdentityModel, WCF | 1 Comment

Custom WCF Credential Types

Every once in a while the question comes up how to extend WCF with custom credential types. It turns out that most of the time people don’t really want to invent custom tokens or credential types, but rather want to … Continue reading

Posted in IdentityModel, WCF | Leave a comment