Stack Overflow
Stack Overflow

Questions tagged [wif]

The Windows Identity Foundation is a free Microsoft library that enables claims based authentication and use federated identity/single sign-on in their applications.

The Windows Identity Foundation is a free Microsoft .NET library that enables claims based authentication and use federated identity/single sign-on in their applications.

It is part of Microsoft's wider identity and access management strategy which includes Active Directory Federation Services and Windows Azure Access Control Services.

1279 questions
7
votes
3 answers

How do you pass a (Claims) security Token to a WIF enable WCF service

I am curious to find out how we could possibly send a Security token from a WIF application that has already been authenticate to a WIF enabled WCF Service. Any assistance will be appriciated
hitsy
  • 71
  • 1
  • 2
7
votes
3 answers

What's the difference between WS-Trust, OpenID, and SAML Passive?

Seems that Microsoft ADFSv2 supports WS-Trust, and SAML Passive, but the WIF stack it's built upon doesn't support SAML. What is the difference between WS-Trust and SAML-P? Do they share the same security vulnerabilities, if so what are they? Note:…
makerofthings7
  • 60,103
  • 53
  • 215
  • 448
7
votes
0 answers

Web-farm suitable implementation of SessionSecurityTokenCache

I need to implement SessionSecurityTokenCache in order to be able to use WIF in a load-balanced web farm. Is there a web-farm suitable (e.g. SQL based) implementation of this class that I can use, or do I really need to create my own?
Justin
  • 84,773
  • 49
  • 224
  • 367
7
votes
2 answers

Decrypting SAML 2 assertion using .NET 4.5 (System.IdentityModel) / WIF

I am trying to decrypt an encrypted SAML 2.0 assertion issued from a Java-based Identity Provider. Given the following setup of security token handlers: X509Certificate2 cert = ... // Contains private key var serviceTokens = new…
Vidar Kongsli
  • 826
  • 2
  • 9
  • 20
7
votes
3 answers

Complex authentication with existing user database in MVC5

I'm migrating a SaaS app from Classic ASP to .NET MVC5 and will use EF6 Database First. The login form for end users is customisable by each tenant (on their own subdomain but pointing to the same web application). We wish to use the existing…
Marcus
  • 9,011
  • 10
  • 45
  • 65
7
votes
3 answers

How to hold the cookies claims updated with MCV5/OWIN

We’re working on an OWIN MVC5 project. We use an own implementation of IUserStore to integrate the user-management which is part of our companies framework. So far this works fine. We want to provide role membership and other security…
HCL
  • 36,053
  • 27
  • 163
  • 213
7
votes
2 answers

Message: ID4243: Could not create a SecurityToken. A token was not found in the token cache and no cookie was found in the context

We're getting the exact same error as in this thread ... in our production environment. [WIF Security Token Caching Does anybody have a fix to this error ? Message: ID4243: Could not create a SecurityToken. A token was not found in the token cache…
Lord02
  • 121
  • 1
  • 8
7
votes
1 answer

WIF sliding session re-authenticate

I've implemented sliding sessions in my Relying Party application, as described in Sliding Sessions for WIF 4.5. That works great as far as it goes, but there's one problem that it seems nobody talks about. As the linked blog post points out, when…
Jim Mischel
  • 131,090
  • 20
  • 188
  • 351
7
votes
1 answer

WIF SessionSecurityToken Expiration

I'm trying to implement sliding session expiration. I'm using Windows Azure ACS, .Net 4.5, WIF. When I first receive the token, what I'm doing is setting its default expiration time to 2 hours and write that token into cookie as shown in the code…
Gaurav Mantri
  • 128,066
  • 12
  • 206
  • 241
7
votes
3 answers

What makes the FederatedAuthentication.SessionAuthenticationModule return NULL?

I'm not sure why but my FederatedAuthentication.SessionAuthenticationModule is resolving as NULL and crashing my app when I try to run my ClaimsTransformer() module: public void EstablishSession(ClaimsPrincipal principal) { var…
user1265146
  • 1,985
  • 5
  • 16
  • 20
7
votes
2 answers

MachineKeySessionSecurityTokenHandler and the session token expiring between application restarts

In my MVC application, I am using forms authentication to authenticate the user and then System.IdentityModel.Services.SessionAuthenticationModule to persist the session. While I'm not yet at the point where it's necessary, I did want to utilize…
Chris Simmons
  • 6,924
  • 5
  • 31
  • 47
6
votes
1 answer

Creating custom SAML token

I need to create SAML token with custom data. There is a good looking example on MSDN but it's not compiling.... Have anybody got smt to read about it of working sample? Or is just adding new claims to Assertion collection? Do i need to describe…
Denis Agarev
  • 1,531
  • 4
  • 17
  • 34
6
votes
1 answer

Single sign on between ASP.NET app and Office365 with on-premise ADFS STS

I'm building an ASP.NET web app that authenticates users with Windows Identity Foundation. The organization has an on-premise ADFS STS. Their Office365 authenticates through Microsoft Federation Gateway with the on-premise STS. The new web app will…
Carvellis
  • 3,992
  • 2
  • 34
  • 66
6
votes
2 answers

Impersonating ASP.NET claims identity to windows identity

I have an ASP.NET application which uses claims bases authentication against ADFS. I also map it to a WindowsClaimsIdentity by using the Claims to Windows Identity Service. That works fine. But now I need to impersonate the current request/thread so…
Jaap
  • 2,252
  • 2
  • 20
  • 24
6
votes
7 answers

WSFederationAuthenticationModule.RedirectingToIdentityProvider event is not called

I have 2 events in my Global.asax.cs file WSFederationAuthenticationModule_SecurityTokenValidated and WSFederationAuthenticationModule_RedirectingToIdentityProvider WSFederationAuthenticationModule_RedirectingToIdentityProvider is not called by wif…
VoimiX
  • 1,180
  • 3
  • 16
  • 31
1 2 3
85 86