Category Archives: IdentityModel

ClaimsAuthenticationManager in Geneva

Posted on November 14, 2008 by Dominick Baier

One of the things that Zermatt was lacking was a uniform way to look at incoming claims (either from an STS or from auto-converted authentication information). In Geneva we now have a piece of plumbing called the ClaimsAuthenticationManager which gets … Continue reading

Posted in ASP.NET, IdentityModel, WCF | Leave a comment

Username/Password Validation with Geneva

Posted on November 13, 2008 by Dominick Baier

In my previous post I mentioned that Geneva takes over parts of the WCF security system – I used the example of certificate validation. This is also true for username/password authentication. In the case you have an existing service with … Continue reading

Posted in IdentityModel, WCF | Leave a comment

Geneva is the new WCF Security

Posted on October 31, 2008 by Dominick Baier

Geneva has evolved to not only a an extension to WCF/ASP.NET for STS/token related things – it also changes how base WCF security works – to the better IMO. Let me give you an example: Trusted certificate issuersWhen doing client … Continue reading

Posted in IdentityModel, WCF | Leave a comment

Geneva is the new Zermatt (and much more)

Posted on October 27, 2008 by Dominick Baier

Starting with the PDC release, Microsoft’s identity framework is now code-named “Geneva Framework”. Based on that framework, there is also a product called “Geneva Server” that brings the ADFS 1.x type of functionality (and more) to the web services/WS-Trust/CardSpace world. … Continue reading

Posted in ASP.NET, IdentityModel, WCF | Leave a comment

CardSpace is…

Posted on October 9, 2008 by Dominick Baier

I often get the Question: “What is CardSpace?” While there is a whole philosophical side to CardSpace (or similar products) – the technical and pragmatic answer is: “CardSpace is a graphical client for security token services built into Windows” (or … Continue reading

Posted in IdentityModel | Leave a comment

MSDN Article about WCF Service Authorization

Posted on September 20, 2008 by Dominick Baier

Christian and I have written an article about the authorization infrastructure in WCF. It covers roles- and claims-based authorization and how to customize both. Enjoy. http://msdn.microsoft.com/en-us/magazine/cc948343.aspx(back online now – sorry for the confusion)

Posted in IdentityModel, WCF | Leave a comment

Certificate-backed InfoCards and Service Credential Negotiation

Posted on September 14, 2008 by Dominick Baier

When trying to implement certificate backed managed InfoCards you might run into this slightly misleading error message: “There was a failure making a WS-Trust exchange with an external application. Could not retrieve token from identity provider. Inner Exception: SOAP security … Continue reading

Posted in IdentityModel | Leave a comment

Zermatt: Source Code for FormsAuth STS

Posted on September 3, 2008 by Dominick Baier

I got several requests to publish the full source of the FormsAuth STS I described here. Find it here. The setup is just like the passive STS/RP samples in the SDK. HTH  

Posted in IdentityModel | Leave a comment

Zermatt: Using Forms Authentication in a Passive STS

Posted on August 15, 2008 by Dominick Baier

Since all Zermatt samples use Windows authentication to auth against an STS – the question how to use forms authentication instead popped up several times. It is easy to do that. Basically a passive STS endpoint is an ASP.NET handler … Continue reading

Posted in IdentityModel | Leave a comment

WCF Claims to "Zermatt" Claims Migration Story

Posted on July 24, 2008 by Dominick Baier

Hey – that’s a short post – there is none. thanks. bye… OK hold on – some background info. Microsoft introduced their new claims API with .NET 3.0 as part of the System.IdentityModel assembly (with super tight integration into WCF). … Continue reading

Posted in IdentityModel | Leave a comment