Stack Overflow
Stack Overflow

Questions tagged [wif]

The Windows Identity Foundation is a free Microsoft library that enables claims based authentication and use federated identity/single sign-on in their applications.

The Windows Identity Foundation is a free Microsoft .NET library that enables claims based authentication and use federated identity/single sign-on in their applications.

It is part of Microsoft's wider identity and access management strategy which includes Active Directory Federation Services and Windows Azure Access Control Services.

1279 questions
184
votes
1 answer

Catch-22 prevents streamed TCP WCF service securable by WIF; ruining my Christmas, mental health

I have a requirement to secure a streamed WCF net.tcp service endpoint using WIF. It should authenticate incoming calls against our token server. The service is streamed because it is designed to transfer large amounts of data n stuff. This…
user1228
126
votes
3 answers

Decoding and verifying JWT token using System.IdentityModel.Tokens.Jwt

I've been using the JWT library to decode a Json Web Token, and would like to switch to Microsoft's official JWT implementation, System.IdentityModel.Tokens.Jwt. The documentation is very sparse, so I'm having a hard time figuring how to accomplish…
w.brian
  • 16,296
  • 14
  • 69
  • 118
70
votes
3 answers

What's the difference between ADFS, WIF, WS Federation, SAML, and STS?

These are numerous technologies and buzzwords used for single sign-on with Microsoft services. Can someone explain ADFS, WIF, WS Federation, SAML, and STS (Security token service), including where and when each is being used.
Tiffany Harry
  • 777
  • 1
  • 8
  • 10
62
votes
3 answers

What's the role of the ClaimsPrincipal, why does it have multiple Identities?

I am trying to understand the security model behind .NET based on claims for the application (Relying Party). I know there are 2 major classes: ClaimsPrincipal - security context for the running process ClaimsIdentity - stores information about…
Dan
  • 1,555
  • 2
  • 14
  • 30
55
votes
10 answers

Where is the Microsoft.IdentityModel dll

I have installed the Windows Identity Foundation but can't find the Microsoft.IdentityModel dll. According to the Azure Hands-on-Labs it should just be in Add Reference in VS2010. However it's not there. I also looked in c:\Program…
Moory
  • 573
  • 1
  • 4
  • 5
44
votes
1 answer

In WCF/WIF how to merge up claims from two different client's custom sts's tokens

I'm trying to create something like: Client authenticates and gets token from custom STS1, next client authorizes with machine key and is issued token on custom STS2 and gets another token. With last token, client requests methods on RP service. All…
myrx
  • 451
  • 3
  • 7
36
votes
4 answers

How do I remove an existing claim from a ClaimsPrincipal?

I am making a developer tool for impersonating Roles for an intranet site to allow developers to quickly act as any Role as needed. Roles defined are Developer, Team Lead, Team Member, Engineering, Marketing, Guest and a tool on the web page makes…
Greg Mason
  • 753
  • 1
  • 9
  • 23
35
votes
2 answers

How do I perform WIF/claims impersonation without the claim being mapped to an AD account?

I need to perform search impersonation in SharePoint 2010 for Claims users. To put this in context, I would like to first state how I get this to work with Windows accounts and then discuss Claims / WIF. Windows Accounts I can do this for "classic"…
Kirk Liemohn
  • 7,733
  • 9
  • 46
  • 57
31
votes
4 answers

How to encrypt JWT security token?

I need to secure my web-token with signing and encryption. I wrote the next lines of code: var tokenHandler = new JwtSecurityTokenHandler(); var tokenDescriptor = new SecurityTokenDescriptor { Subject = new ClaimsIdentity(new[] { …
Qué Padre
  • 2,005
  • 3
  • 24
  • 39
28
votes
2 answers

Where did 'My" certificate store go?

Because I'm awesome I'm trying to run the latest WIF demo app using VS2k10 B2 on my 7 boxen... 64bit of course (my neckbeard is strong) I'm having a problem getting it running. Part of the whole demo thing requires I install some certificates on the…
user1228
27
votes
5 answers

Federated Authentication on Azure

I'm using WIF (.net 4.5), and Azure Active directory for authentication. The website will sit on Azure. Everything works as expected locally, however when I put it onto azure I get the error: The data protection operation was unsuccessful. This…
Ross Dargan
  • 5,876
  • 4
  • 40
  • 53
26
votes
2 answers

Storing a list of string in Claim (System.Security.Claims)

I'm developing a web app with Asp.Net 5 MVC, Owin and Oauth2 bearer token as auth type. I need to store a list of string "CODEFOO,CODBAR,CODEX,.." inside a System.Security.Claims.Claim with a custom claim Type. When the user requests a token, this…
systempuntoout
  • 71,966
  • 47
  • 171
  • 241
26
votes
2 answers

How do I setup On-Premises Authority Authentication in MVC 5?

What is the Metadata document that is required for "On-Premises Authority Authentication" in MVC 5? I am supposed to supply it's URL in order to setup Organizational Accounts Authentication in MVC 5 for On-Premises option but I am new to web…
Refracted Paladin
  • 12,096
  • 33
  • 123
  • 233
26
votes
1 answer

Using WIF, what is the difference between audienceUris and realm?

We have an ASP.NET application using WIF. Our web.config file has a section like this:
Bryan
  • 2,775
  • 3
  • 28
  • 40
25
votes
0 answers

Configuring WIF/WCF using Identity and Access Tool to a Thinktecture.IdentityServer

note: A github repo has been constructed to demonstrate the issue causing these questions. In creating a WIF secured WCF service, the MSDN documentation recommends using the Identity and Access Tool for visual studio. Upon running the tool on the…
psaxton
  • 1,693
  • 19
  • 24
1
2 3
85 86