Just added another scenario to the Cloud Identity Scenarios and Solutions for Developers including solution approach, code sample, walkthrough . Courtesy of Todd Foust who created it all from scratch. The scenario is distributed application with ASP.NET web app calling to the back end WCF (SOAP) web...

This post is based on WIF Built-in Bindings Overview and AD FS Endpoints . This information should provide a more cohesive view for developers when developing claims aware WCF services using AD FS and WIF. There are 30 scenarios here. Working on guidance when to use what. WS-Trust 1.3 endpoints AD FS...

This is a quick list of resources for the under fire scenarios for Windows Azure Service Bus (Windows Azure is  here and SQL Azure here ). Under fire scenarios in my speak is when something needs to be done quickly. Example, fix error, write working code, get up to speed with the folksonomy. How...

This post answers the following question: “How do I use the Access Control Service (ACS)  and a Simple Web Token (SWT) to secure a REST-based WCF service that is hosted in Windows Azure? How do I build a client application that obtains and uses an SWT token from ACS to connect to this web service...

Scenario Following are characteristics of the scenario: WCF service that exposes its functionality via REST and requires an issued SWT token based on any type of credentials – username/password pair, symmetric key, or client certificate. Solution To solve this scenario, use ACS with the following configuration...

Scenario Following are characteristics of the scenario: WCF service that expose its functionality via SOAP and requires an issued SAML token. The credentials are managed by ADFS Solution To solve this scenario, use ACS with the following configuration: Use SAML 2.0 token when configuring relying party...

Scenario Following are characteristics of the scenario: WCF service that expose its functionality via SOAP and requires an issued token based on username and password pair. Solution To solve this scenario, use ACS with the following configuration: Use SAML 2.0 token when configuring relying party (trust...

Scenario Following are characteristics of the scenario: WCF service that expose its functionality via SOAP and requires an issued token based on Client Certificates Solution To solve this scenario, use ACS with the following configuration: Use SAML 2.0 token when configuring relying party (trust) for...

From WCF Data Services WCF Data Services (formerly known as "ADO.NET Data Services") is a component of the .NET Framework that enables you to create services that use the Open Data Protocol (OData) to expose and consume data over the Web or intranet by using the semantics of representational...

This is a continuation to Windows Azure Web Role WCF Service Federated Authentication Using AppFabric Access Control Service (ACS) v2 – Part 1 . Step 2 – Create and configure WCF Service as relying party in ACS v2 Management Portal The content in this step is adapted from How To: Authenticate with Username...

This is index of available How-To’s for Windows Communication Foundation (WCF) distilled from the WCF Documentation available on MSDN. Topics covered: Getting Started Designing Service Contracts Defining and Specifying Faults Using Sessions Synchronous and Asynchronous Operations Implementing Service...

This is continuation to the series on how to build distributed application hosted in Windows Azure Environment and Security using Windows Azure AppFabric Access Control Service (ACS) v2. For previous parts review the following: Securing Windows Azure Distributed Application Using AppFabric Access Control...

This is a follow up to a previous post Azure AppFabric Access Control Service (ACS) v 2.0 High Level Architecture – Web Application Scenario . This post outlines the high level architecture for a scenario where Azure AppFabric Access Control Service (ACS) V2 involved in authentication and identity flow...

Inspired by the book RESTful .NET: Build and Consume RESTful Web Services with .NET 3.5 . Hosting in IIS [managed hosting ] offers the following advantages : Process setup and shutdown. Process pooling and recycling. Application restart [recycle] when configuration changed. Enhanced security model. Management...

This post summarizes the steps needed to create basic self hosted RESTful WCF service based on the book RESTful .NET: Build and Consume RESTful Web Services with .NET 3.5 . Summary of steps Following are the summary of steps needed to be taken to create and test self hosted RESTful WCF services. Step1...

From the book RESTful .NET: Build and Consume RESTful Web Services with .NET 3.5 . RESTful binding, behavior, hosting, and contracts WebHttpBinding – uses http transport and text encoder. WebBehavior – end point behavior to dispatch messages based on URIs and HTTP verbs. WebSericeHost – provides RSTful...

      This is quick summary of steps for creating WCF Unit Tests using WCF Load Test available for free on Codeplex. This quick summary created based on the Lab materials that ship with the tool . Quick Resource Box WCF Load Test Summary of steps Step 1. Configure message tracing...

patterns & practices team has just released a beta version of WCF Security Guide on Codeplex. Download the guide at http://www.codeplex.com/WCFSecurityGuide . Original announcement by J.D. Meier, the man behind the effort, is here - New Release: patterns & practices WCF Security Guide (BETA)

WCF offers very flexible approach of Input and Data Validation based on XML Schemas. The approach is flexible since the validation rules are expressed in form of XML schema and can be changed at any time without recompiling the solution. I followed the steps detailed in How To: Perform Message Validation...

Input and Data Validation is one of the core security principles . WCF is no exception . To get most out of WCF in secure way one must implement proper Input and Data Validation. I was following instructions on How To – Perform Input Validation in WCF compiled by patterns&practice team lead...

patterns & practices has recently released WCF Security Guidance Project . JD , the program manager behind the effort, has been blogging about it too.It is evolving project but the initial content is fantastic already. It has Application Scenarios , Video Index , but my favorites are How-To's: How...

How to consume WCF services directly from Html client? How to add AJAX-like functionally to application that does not natively support ASP.NET AJAX like classic ASP, ASP.NET 1.1, or PHP? WCF that ships with .Net 3.5 provides capability to consume it from any JavaScript enabled client via XML or JSON...

Service Trace Viewer Tool (SvcTraceViewer.exe) tool comes with Microsoft® Windows® Software Development Kit for Windows Vista™ and .NET Framework 3.0 Runtime Components . It allows to view WCF diagnostics traces in very convenient way. " Using Service Trace Viewer for Viewing Correlated Traces and Troubleshooting...

JD Meier walks through the creation of simple WCF services to be hosted in IIS 6.0. Summary of Steps Step 1. Create the test service Step 2. Add a Hello World Method Step 3. Test your WCF service Step 4. Enable meta-data for your WCF Service. Step 5. Create the test client. Step 6. Add a Web Services...

I am researching on best practices with WCF security in terms of "YOU SHOUD" vs "YOU CAN". While it is great to have "How to" stuff I am also interested in "Why" angle. I have common simple scenario of WinForms client consuming WCF service inside corp walls with Active Directory deployed. Here is what...