Alik Levin's

Clarity, Technology, and Solving Problems | PracticeThis.com

Windows Azure AppFabric Access Control Service (ACS): WCF SWT/REST OAuth Scenario

Windows Azure AppFabric Access Control Service (ACS): WCF SWT/REST OAuth Scenario

  • Comments 0
Programming Windows Identity Foundation

Scenario

Following are characteristics of the scenario:

  • WCF service that exposes its functionality via REST and requires an issued SWT token based on any type of credentials – username/password pair, symmetric key, or client certificate.

ACS WCF REST SWT OAuth

Solution

To solve this scenario, use ACS with the following configuration:

  • In the app, use either custom Token Handler with WIF pipeline or parse the SWT token yourself.
  • In ACS, use SWT token when configuring relying party (trust) for your WCF service.
  • You can use any credential types – Password, Symmetric Key, or Client Certificates.
  • Configure Service Identity depending on the credential you are using.

Supporting Materials

Related Resources