Stack Overflow
Stack Overflow

Questions tagged [ws-federation]

WS-Federation is an Identity Federation specification, which provides mechanisms for allowing differential security realms.

WS-Federation is an Identity Federation specification, which provides mechanisms for allowing differential security realms to arrange information on identities, identity attributes and authentication.

WS-Federation is developed by many companies - BEA Systems, CA Incorporated, BMC Software, IBM, Layer 7 Technologies, Microsoft, VeriSign and Novell.

441 questions
70
votes
3 answers

What's the difference between ADFS, WIF, WS Federation, SAML, and STS?

These are numerous technologies and buzzwords used for single sign-on with Microsoft services. Can someone explain ADFS, WIF, WS Federation, SAML, and STS (Security token service), including where and when each is being used.
Tiffany Harry
  • 777
  • 1
  • 8
  • 10
44
votes
1 answer

In WCF/WIF how to merge up claims from two different client's custom sts's tokens

I'm trying to create something like: Client authenticates and gets token from custom STS1, next client authorizes with machine key and is issued token on custom STS2 and gets another token. With last token, client requests methods on RP service. All…
myrx
  • 451
  • 3
  • 7
36
votes
1 answer

OWIN Authentication Pipeline To Use Katana Middleware Correctly?

I'm looking to use WsFederation Authentication against an internal ADFS 2 service and to use the OWIN authentication pipeline . What is considered to be the order in which middleware should be hooked up and which modules are required in various…
Tom Tregenna
  • 1,281
  • 1
  • 13
  • 23
12
votes
1 answer

Intermittent redirection loops during ADFS authentication

I am using Owin to configure my ASP.NET MVC 5 (.NET 4.5, IIS 7/8) application to authenticate against a third-party ADFS…
Ant P
  • 24,820
  • 5
  • 68
  • 105
11
votes
4 answers

Federated authentication in Sharepoint 2013: getting rtFa and FedAuth cookies

The scenario is the following: I need to perform a federated authentication of a user (which uses his university account) into the Sharepoint site of his university and to obtain both the FedAuth and rtFa cookies (which I have to pass to SharePoint…
metaphori
  • 2,681
  • 1
  • 21
  • 32
10
votes
2 answers

WS-Federation sign-in Asp.NET 5 MVC 6 ADFS

Hello so I've been trying to achieve WS-Fed SSO on my MVC6 web application, I've read a bit on authentification and all to identify my requirements. I have to use WsFederationAuth so no oauth nor saml protocol would work for me. Edit : After…
Lomithrani
  • 2,033
  • 3
  • 18
  • 24
9
votes
1 answer

How can I receive and verify WS-Federation tokens in python/django?

I am trying to implement an assertion consumer for signed WS-Federation tokens as part of a SSO system. I know that simplesamlphp has (undocumented) ws-fed support, but I'm using a Django stack. It looks like djangosaml2 pysaml2 doesn't support the…
Michael
  • 373
  • 2
  • 15
9
votes
4 answers

WIF- ID1014: The signature is not valid. The data may have been tampered with

I've been using WIF to authenticate our new website, the STS is based upon the starter-sts implementation. To enable this to work correctly on out load balanced environment I've used the following in the global.asax to override the default…
RubbleFord
  • 7,456
  • 9
  • 50
  • 80
8
votes
1 answer

Create a custom WS-Federation Identity Provider using a WCF service

This relates to, but I'm quite sure does not duplicate, my question: Looking for a secure and robust STS implementation Since asking that, some input from business, and some research, has led me to believe that instead of implementing a secure token…
ProfK
  • 49,207
  • 121
  • 399
  • 775
8
votes
1 answer

What is the relationship between wtrealm, WS-Federation Passive URL and app ID?

I am looking into ADFS integration using Microsoft's OWIN WS-Federation package but I am finding it difficult to determine the purpose of certain parameters from the documentation that is available. We have three environments, which are all hosted…
Ant P
  • 24,820
  • 5
  • 68
  • 105
8
votes
1 answer

Authentication with OWIN and WsFederation for MVC, web api and signalR apps

For my company, I have to make a POC to check if we can use wsFederation authentication for our project, which has a MVC app, some webapi controllers, and some signalR hubs, all in differents projects. We'd also like to use the OWIN authentication…
PAP
  • 167
  • 8
8
votes
4 answers

BootstrapContext is null on ClaimsIdentity

I have created a new ASP.NET MVC application with .NET 4.5. I have successfully set up authentication with an STS. The authentication flow is working fine and I am able to get the ClaimsIdentity, containing the desired claims, on…
Unmesh Kondolikar
  • 9,256
  • 4
  • 38
  • 51
8
votes
1 answer

Mixed Mode Federated authentication and Forms Authentication

I am trying to make a mixed mode authentication to be able to put some users on Federated authentications and others on Forms authentication. I am working with WIF, I set up my STS and everything is happy, when I am in federated mode by turning off…
Alaa Osta
  • 4,249
  • 6
  • 24
  • 28
7
votes
0 answers

How to make Custom STS receive SAML token from client as client credential for authentication?

I have a custom STS service that receives username/password as client credential and generate token if username/password is valid. I do the username/password check in our own user store. However now I need to make my custom STS receive SAML 2.0…
ANewGuyInTown
  • 5,957
  • 5
  • 33
  • 45
7
votes
2 answers

Difference between WS-Trust, WS-Fed and SAML 1.1/ 2.0 protocols

What's the difference between WS-Trust, WS-Fed and SAML 1.1/ 2.0 protocols? My understanding on these protocols gets confused when SAML is used as a security token in WS-Trust and WS-Fed protocols. Interested in knowing in which scenario these…
Zeigeist
  • 3,755
  • 3
  • 20
  • 22
1
2 3
29 30