Book Image

Microsoft Windows Identity Foundation Cookbook

By : Sandeep Chanda
Book Image

Microsoft Windows Identity Foundation Cookbook

By: Sandeep Chanda

Overview of this book

<p>Implementing security as a cross-cutting concern has several challenges. Consequently, modern software development practices and Service Oriented Architectures are alluding to the idea of claims-based Identity for access control. Microsoft&rsquo;s Identity and Access Control paradigm leverages industry standard open specifications and provides tools, runtime and platform support for facilitating the development of claims-enabled applications. <br /><br />Microsoft Windows Identity Foundation Cookbook explores real world scenarios on building claims-enabled .NET applications using Microsoft Windows Identity Foundation (WIF), Active Directory Federation Services 2.0 (AD FS 2.0) and Windows Azure Access Control Services (ACS).<br /><br />This book covers all aspects of several real world challenges that professional developers face while enabling support for claims-based identity across interoperable platforms and building claims-enabled applications. The book then goes on to explore AD FS 2.0 and provides step-by-step details on how claims support is enabled in Microsoft&rsquo;s server technologies.<br /><br />The book starts by introducing you to the world of claims-based identity in .NET Framework 4.0. It then moves on to showcase the capabilities of the runtime and the associated SDK including the steps to perform identity delegation in ASP.NET MVC 3 applications, create WCF security token services, extend the runtime to provide support for SAML 2.0 specifications and use AppFabric as a trusted source for implementing access control. Further, the book explores AD FS 2.0 and features recipes showcasing steps to configure claims in Microsoft&rsquo;s server technologies. It also features a chapter on some of the newer capabilities of the runtime including providing support for claims in Windows Workflow Foundation and Windows 8 Metro applications.<br /><br />Windows Identity Foundation Cookbook provides a mix of recipes from basic to advanced to enable professional developers to implement claims-based identity in enterprise-wide scalable and interoperable applications.</p>

Related Content you might be interested in

Current Title:

Small book image
Microsoft Windows Identity Foundation Cookbook
Sandeep Chanda
Apr, 2012 | 294 pages
No titles found
Table of Contents (15 chapters)
Microsoft Windows Identity Foundation Cookbook
Microsoft Windows Identity Foundation Cookbook
Credits
Credits
Foreword
Foreword
About the Author
About the Author
Acknowledgement
Acknowledgement
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Overview of Claims-based Identity
Overview of Claims-based Identity
Introduction
Abstracting identity with claims
Designing claims-based tokens using Security Assertion Markup Language
Augmenting security with a claims-based architecture
Implementing federated security using a Security Token Service
Implementing Single Sign-On using claims
Implementing Single Sign-Out in a trust realm
Configuring certificates for the claims-based applications
2
Programming with Windows Identity Foundation
Programming with Windows Identity Foundation
Introduction
Configuring applications for Windows Identity Foundation runtime support
Implementing claims in ASP.NET MVC 3 Web Applications
Extending the Windows integrated authentication to support claims-based identity
Implementing claims-based authentication and authorization in ASP.NET MVC 3
Designing claims-enabled WCF services
Implementing WIF Session Mode with a distributed token cache
3
Advanced Programming with Windows Identity Foundation
Advanced Programming with Windows Identity Foundation
Introduction
Implementing the claims pipeline
Designing a custom Identity Provider Security Token Service (IP-STS)
Designing a custom Relying Party Security Token Service (RP-STS)
Implementing support for SAML 2.0 tokens
Implementing Windows identity impersonation with Claims to Windows Token Service (c2WTS)
Troubleshooting and monitoring in WIF
4
Cloud-based Identity with Azure Access Control Service
Cloud-based Identity with Azure Access Control Service
Introduction
Configuring Access Control Service for an ASP.NET MVC 3 relying party
Leveraging web-based identity providers such as Windows Live, Google, and Facebook
Designing secure REST services using ACS 2.0 and OAuth
Using ACS 2.0 Management Service
Securing Windows Phone applications using ACS 2.0
Securing iOS applications using ACS 2.0
5
Identity Management with Active Directory Federation Services
Identity Management with Active Directory Federation Services
Introduction
Configuring a federation server
Implementing a federation scenario with WIF and AD FS 2.0
Implementing a identity delegation
Integrating AD FS 2.0 with Azure ACS 2.0
Troubleshooting in AD FS 2.0 with debug tracing
6
Enterprise Server Interoperability with WIF, Azure ACS 2.0, and AD FS 2.0
Enterprise Server Interoperability with WIF, Azure ACS 2.0, and AD FS 2.0
Introduction
Implementing claims-based authentication in Microsoft SharePoint Server 2010
Implementing claims-based authentication in Microsoft Dynamics CRM Server 2011
Implementing identity with AD FS 2.0 for the applications hosted on Windows Azure
Integrating AD FS 2.0 with Office 365
Implementing Single Sign-On with Salesforce
7
Extension and Future of Windows Identity Foundation
Extension and Future of Windows Identity Foundation
Introduction
Securing Workflow Services using Workflow Foundation Security Pack CTP 1
Implementing WIF SAML 2.0 Extension CTP
Securing Windows 8 Metro applications using Azure ACS 2.0
Implementing machine-driven, claims-based access control with Windows Server 8 Dynamic Access Control and .NET Framework 4.5
Configuring Federation Services role in Windows Server 8

Implementing a federation scenario with WIF and AD FS 2.0

Now that we have successfully configured a federation server, we will explore a federation scenario where the claims issued by Federation Service are used by a claims-enabled (using the WIF runtime and the SDK) ASP.NET Web Application. Web Server (IIS) where ASP.NET Web Application is hosted will establish a trust relationship with the federation server and will allow access to the users who present the claims issued by Federation Service.

Getting ready

In this recipe, we will use a claims-enabled ASP.NET Web Application to verify the claims issued by Federation Service. You should have the WIF SDK installed along with Microsoft Visual Studio 2010 to create a claims-enabled ASP.NET Web Application.

How to do it...

To implement the federation scenario, perform the following steps:

  1. 1. First, we will create a claims-enabled ASP.NET Web Application. To do this, create a new ASP.NET Web Application project from the Visual Studio 2010 C# templates...

Previous Section
End of Section 4
Next Section