Category Archives: IdentityModel

Custom Principals in WCF with Geneva

Posted on April 2, 2009 by Dominick Baier

WCF has an extensibility point to set your own IPrincipal implementation on Thread.CurrentPrincipal (I wrote about that here). Geneva uses this mechanism to set its IClaimsPrincipal (wrote about that here). Since the standard “slot” for custom principals is already used … Continue reading

Posted in IdentityModel, WCF | Leave a comment

Client Generated SAML Tokens to Interact with the Access Control Service

Posted on March 29, 2009 by Dominick Baier

I recently wrote about generating SAML tokens at the client. Justin showed a similar approach at Mix to interact with the Access Control Service. Mix recording Blog post

Posted in ASP.NET, IdentityModel, WCF | Leave a comment

Geneva integration into ASP.NET

Posted on March 12, 2009 by Dominick Baier

Geneva is integrated in ASP.NET/IIS using the standard IHttpModule extensibility mechanism. Geneva ships with three HTTP modules: ClaimsPrincipalHttpModule (already wrote about it here). WSFederationAuthenticationModule (implements WS-Federation authentication) SessionAuthenticationModule (implements session authentication) ClaimsPrincipalHttpModule is special – but the other two are … Continue reading

Posted in ASP.NET, IdentityModel | Leave a comment

Geneva integration into WCF

Posted on March 12, 2009 by Dominick Baier

Having done quite a bit of WCF customization myself, it is fun to see how Geneva framework wires itself up into the WCF runtime. The high-level goals are as follows: route the token provisioning, serialization and authentication through the Geneva … Continue reading

Posted in IdentityModel, WCF | Leave a comment

Using SAML as a Client Credential Type in WCF (with Geneva)

Posted on March 10, 2009 by Dominick Baier

DisclaimerFor the motivation for this article please read this here first. I am not advocating the use of client generated SAML tokens in general, and I also know that there is not much point in the client generating claims for … Continue reading

Posted in IdentityModel, WCF | 1 Comment

Custom WCF Credential Types

Posted on March 9, 2009 by Dominick Baier

Every once in a while the question comes up how to extend WCF with custom credential types. It turns out that most of the time people don’t really want to invent custom tokens or credential types, but rather want to … Continue reading

Posted in IdentityModel, WCF | Leave a comment

Setting Key Identifiers in Geneva

Posted on February 27, 2009 by Dominick Baier

Keys used in tokens or RSTRs need to be identified somehow – common ways to do this is to use a thumbprint, a serial number or the subject key identifier. A “Geneva” based token service will use the combination of … Continue reading

Posted in IdentityModel | Leave a comment

Host Headers, SSL and WCF Metadata

Posted on February 10, 2009 by Dominick Baier

One of my web servers here has a pretty common setup – a Windows machine name and a (different) DNS name (in this case dynamic DNS – but doesn’t matter). IIS has a single web site with bindings for HTTP … Continue reading

Posted in IdentityModel, WCF | Leave a comment

Live ID and Information Cards

Posted on January 7, 2009 by Dominick Baier

I while ago I wrote that there is an experimental version of the Live ID login page that makes use of Information Cards linked to your Live ID account. Unfortunately this login form was only used for very specific services … Continue reading

Posted in IdentityModel | Leave a comment

Federating with Live ID (using the Access Control Service)

Posted on December 28, 2008 by Dominick Baier

There are already a number of ways today how you can federate with the Live ID service (e.g. using the Live ID SDK, OpenID or WS-Federation). Another option would be to use the Access Control Service. I can see a … Continue reading

Posted in ASP.NET, IdentityModel, WCF | Leave a comment