Monthly Archives: May 2011

Access Control Service v2: Registering Web Identities in your Applications [concepts]

ACS v2 support two fundamental types of client identities– I like to call them “enterprise identities” (WS-*) and “web identities” (Google, LiveID, OpenId in general…). I also see two different “mind sets” when it comes to application design using the … Continue reading

Posted in IdentityModel | Leave a comment

Thinktecture.IdentityServer Beta 1

I just upload beta 1 to codeplex. Please test this version and give me feedback. Some quick notes on setup Watch the intro screencast on the codeplex site. Use the setup tool to set the signing and SSL certificate. You … Continue reading

Posted in IdentityServer | Leave a comment

Small Gotcha when Adding ADFS as an Identity Provider in ACS v2

It turns out that ACS v2 currently supports two “types” of signing certificates for identity providers: self signed certificates certificates that chain up to a trusted root (from Microsoft’s perspective), e.g. VeriSign In other words, when you use a signing … Continue reading

Posted in IdentityModel | Leave a comment

UIs? Only with Annotations!

I don’t really know what I am talking about here ;) But Jörg does. http://headwriteline.blogspot.com/2011/05/just-released-thinktecture.html

Posted in Uncategorized | Leave a comment

Improving WIF’s Claims-based Authorization – Part 3 (Usage)

In the previous posts I showed off some of the additions I made to WIF’s authorization infrastructure. I now want to show some samples how I actually use these extensions. The following code snippets are from Thinktecture.IdentityServer on Codeplex. The … Continue reading

Posted in IdentityModel | Leave a comment

Improving WIF’s Claims-based Authorization – Part 2

In the last post I showed you how to take control over the invocation of ClaimsAuthorizationManager. Then you have complete freedom over the claim types, the amount of claims and the values. In addition I added two attributes that invoke … Continue reading

Posted in IdentityModel | Leave a comment

Improving WIF’s Claims-based Authorization – Part 1

As mentioned in my last post, I made several additions to WIF’s built-in authorization infrastructure to make it more flexible and easy to use. The foundation for all this work is that you have to be able to directly call … Continue reading

Posted in IdentityModel | Leave a comment