Eugenio Pace

Preparing to be wrong

Browse by Tags

Tagged Content List
  • Blog Post: Claims Identity Guide–Hands On Labs

    Training content based on our guides has been as popular as the content itself. You can now download the “Release Candidate” for labs corresponding to the new guide . The labs are more than just a mirror of the guide. We took the opportunity of adding a few things that complement and extend what is explained...
  • Blog Post: Authentication in WP7 client with REST Services–Part II

    In the previous post I covered the “semi-passive” way for authentication between a Windows Phone 7 client and a REST service. This post completes the information with the “active” way. There’s nothing unexpected here really: We call the Identity Provider using a RequestSecurityToken message (RST) We...
  • Blog Post: Authentication in WP7 client with REST Services–Part I

    In the last drop, we included a sample that demonstrates how to secure a REST web service with ACS, and a client calling that service running in a different security realm: In this case, ACS is the bridge between the WS-Trust/SAML world (Litware in the diagram) and the REST/SWT side (Adatum’s a-Order...
  • Blog Post: Drop #2 of Claims Identity Guide on CodePlex

    Second drop of samples and draft chapters is now available on CodePlex. Highlights: All 3 samples for ACS v2: (" ACS as a Federation Provider ", " ACS as a FP with Multiple Business Partners " and " ACS and REST endpoints "). These samples extend all the original "Federation...
  • Blog Post: ACS as a Federation Provider – Claims transformation

    To work properly, a-Order needs a number of claims to be supplied: User name Organization Role The "Organization” claim is used to filter orders belonging to a specific customer of Adatum. For example, Litware users (like Rick) will eventually end up with a token containing a claim with “Organization...
  • Blog Post: ACS as a Federation Provider–Home Realm Discovery Part 2

    In my previous post, I had a question for all you: What would happen if Adatum’s FP didn’t supply ACS with the whr parameter? An the answer is: ….. ACS will simply ask the user!   ACS has no way (besides the whr parameter) of knowing where to go next (unless you configured your app with only 1 Identity...
  • Blog Post: ACS as a Federation Provider - A little bit deeper into the sample (Home Realm Discovery)

    Updates : fixed typos. Clarified how Home Realm Discovery works in this example.   In the previous post , I introduced the basic scenario of using ACS as a federation provider for Adatum (in addition to the one they already have). In this post, I’ll show you more details on how this works, based...
  • Blog Post: Access Control Service as a Federation Provider

    The first scenario we are working is using ACS as a federation provider. This is an extension of the current chapter on Federation . The basic scenario is the following: Adatum has an Order processing app (a-Order) that is already claims enabled. Adatum wants their partners to be able to access a-Order...
  • Blog Post: Our next project – Claims based Identity and Access Control

    Not surprisingly maybe, security in general, and authentication & authorization in particular, is a consistently highly rated concern for our customers. These concerns are especially elevated  with those considering the cloud, because they don’t have as much control on the cloud as they would...
Page 1 of 1 (9 items)