Stack Overflow
Stack Overflow

Questions tagged [thinktecture-ident-model]

Thinktecture IdentityModel is a versatile helper library to make working with Claims Based Authentication and Windows Identity Foundation easier.

Thinktecture IdentityModel is a versatile helper library to make working with Claims Based Authentication and Windows Identity Foundation easier.

The library is written by Dominick Baier, a security expert involved with the creation of WIF and co-author of Claims Based Identity & Access Control Guide. Source code for the project can be found on Git Hub. Many blog posts on the code can be found on Dominic's blog - leastprivilege.com.

Note - the tag name uses "ident" to fit within 25 character maximum

97 questions
1
vote
1 answer

Thinktecture claims authorization workflow. How does it work?

I have installed the Thinktecture.IdentityModel.Core package. Suppose I've registered my custom implementation of AuthorizationManager in web.config file. public class AuthorizationManager : ClaimsAuthorizationManager { public override Boolean…
lexeme
  • 2,915
  • 10
  • 60
  • 125
1
vote
1 answer

MVC5 OWIN ADFS Authentication loop issue - Thinktecture ResourceAuthorizationManager

I have a peculiar problem with an MVC5 web app. It uses a pretty standard implementation of OWIN an the Thinktecture ResourceAuthorizationManager. It is configured to work with ADFS. The problem that I am facing is that after the app has been…
Jamie
  • 736
  • 6
  • 14
1
vote
2 answers

Role-based authorization in ASP.NET Web API - how to set roles on the principal?

I am using recipe 10-3 in the newly released book ASP.NET Web Api 2 Recipes to support basic authentication in my Web API. This recipe utilizes a 3rd party library from Thinktecture. As seen from the below code, I am authentication the user against…
Lars Michael
  • 693
  • 9
  • 19
1
vote
1 answer

OAuth2 authorization server with claims

I have a Web API application and I want to secure that. I've been reading about ThinkTectures IdentityModel and IdentityServer for authorization (OAtuh2) and I think this is what I need. I'm just not really sure where to start with this. There are…
Vivendi
  • 20,047
  • 25
  • 121
  • 196
1
vote
1 answer

Exceptions from JwtSecurityTokenHandler

I'm using Json Web Tokens for my ASP.NET Web API... and thinktectures identity model. So within my web api Startup.cs I call the IdentityModelJwtBearerAuthenticationExtensions extension method as below: app.UseJsonWebToken( issuer:…
Andrew Duffy
  • 795
  • 2
  • 17
  • 37
1
vote
1 answer

WebAPI using Thinktecture does not process SAML token in header from active client

I have created an ASP.NET WebAPI project which uses claims based authentication with WIF. I am also using Thinktecture Identity Server which is hosted on local IIS to act as an STS. Everything works fine from the browser; I am redirected to the log…
mclaassen
  • 5,018
  • 4
  • 30
  • 52
1
vote
0 answers

Log the logins to the various applications that identityserver manages

We've got a lot of sites with common authentication by thinktecture identityserver v2. Now we would like to have a log of the logins to the sites. We've got a custom IUserRepository where we could log a user login in, but how would we goahead and…
Larsi
  • 4,654
  • 7
  • 46
  • 75
1
vote
2 answers

Understanding the Thinktecture Web API security with ADFS

Here is my current situation. I have an ADFS 2.0 server set up, with two RP web applications connected to it. These applications, App1 and App2, are Web Applications with a Web API backend. Javascript AJAX calls are used. From my initial…
Sdupere
  • 37
  • 6
1
vote
1 answer

No ‘Access-Control-Allow-Origin’ header is present on the requested resource. Origin ‘calling URL’ is therefore not allowed access

First of all let me say that I've gone through all similar posts but nothing solves my issue. I've also ruled out that the server-side is not at fault since I receive the proper response headers, at least as is shown in Fiddler and in Chrome Dev…
von v.
  • 16,868
  • 4
  • 60
  • 84
1
vote
1 answer

Unit testing claims based authorization with ThinkTecture ClaimsAuthorizeAttribute

We are controlling access to our application's resources and actions by using ThinkTecture's MVC ClaimsAuthorizeAttribute and would like to be able to include some unit test coverage using Moq. Ideally, I'd like to write a test which requests a…
dev'd
  • 469
  • 1
  • 4
  • 12
1
vote
3 answers

Can I manually invoke the ClaimsAuthorizationManager for a given ActionResult?

I have an ASP.NET MVC web app which is utilizing claims-based authorization via WIF and Thinktecture.IdentityModel. However, rather than just intercepting the unauthorized request, I'd like to trim my navigation menus to only display the links…
Vinney Kelly
  • 4,975
  • 1
  • 25
  • 31
1
vote
2 answers

How do you prevent replay attacks with Thinktecture IdentityModel token?

I have two sites on separate domains. I'm implementing SSO using the Thinktecture IdentityModel. A user logs into Site A. At some point they click a link to take them to site B. Site A redirects the user to site B/Login.aspx?token=< token > with…
user1686249
  • 73
  • 1
  • 6
1
vote
1 answer

Authorization header in null when setting its value to an Encrypted SAML 2 token

I'm using Thinktechture Identity Server to issue my SAML security tokens using the WS-Trust protocol. Then I'm calling my WEB Api with an Authorization http header containing the token. The token is handled successfully using…
RonyK
  • 2,644
  • 5
  • 32
  • 42
1
vote
1 answer

Thinktecture.Identity SAML token unauthorized

I am using the Thinktecture.IdentityModel 4.0 samples for WebApiSecurity. I've modified the AdfsSamlClient to use our ADFS Server. I am able to get a SAML token from out ADFS Server using var channel = factory.CreateChannel(); var…
beezler
  • 646
  • 6
  • 18
1
vote
1 answer

Session Token gets invalid after pool reset

I'm using Thinktecture IdentityModel in an ASP.NET Web API using Basic Authentication. Everything works fine, I can request a new token to the server with expiration. I host this application in AppHarbor. The problem is that AppHarbor periodically…
margabit
  • 2,924
  • 18
  • 24
1 2 3
4
5 6 7