Google Analytics Alternative Browse by Tags - UK Premier Support for Developers - Site Home - MSDN Blogs

UK Premier Support for Developers

Your dev. Our passion.

Browse by Tags

Tagged Content List
  • Blog Post: Claim-based-security for ASP.NET Web APIs using DotNetOpenAuth

    Source Code Recently I worked with a customer assisting them in implementing their Web APIs using the new ASP.NET Web API framework. Their API would be public so obviously security came up as the key concern to address. Claims-Based-Security is widely used in SOAP/WS-* world and we have rich APIs...
  • Blog Post: Deploying Umbraco to Windows Azure

    Umbraco is a fairly mature CMS system and recently I was engaged in an assignment to deploy Umbraco CMS to Windows Azure. In this post, I’ll share some of my learning’s. Umbraco accelerator (I call it bootstrapper) works well for small to medium web sites but you definitely have to...
  • Blog Post: WebSockets with WCF

    Notification & “Duplex communication” are important scenario over the internet but firewalls and browser limitations makes them very hard to implement. In the browser world, tricks like long polling is commonly used to implement server-push requirements. For non-browser scenarios relay...
  • Blog Post: Pub/Sub with WCF (Part 2)

    Source Code Download Service Bus May CTP has a small glitch when it comes to pub/sub messaging using the WCF programing model. The May CTP API out-of-box doesn’t pick up filter/promoted properties from the WCF data contracts and requires you to explicitly specify these properties on the BrokeredMessage...
  • Blog Post: Pub/Sub with WCF (Part 1)

    In yesterday’s post I have explored how to use Service Bus queues as a transport to communicate between a WCF client and a service. In today’s post I will show you WCF pub/sub messaging using the topics and subscriptions. A subscription behaves exactly like a queue for reads while a topic...
  • Blog Post: WCF with Service Bus V2: Queues

    May CTP of Service Bus introduced tons of new messaging capabilities including Queuing and Topic based pub/sub messaging. Check out Clemens post for an overview. The usage of Service Bus messaging entities (Queues, Topics) is divided across two namespaces – a ‘Management Namespace’...
  • Blog Post: NuGet Package to enable SWT in WIF

    Just found Daniel Cazzulino@Clarius has packaged some of my work in a reusable NuGet package. Pretty cool… http://nuget.org/List/Packages/netfx-Microsoft.IdentityModel.Swt Original post by Zulfiqar Ahmed on 27/04/11 here: http://zamd.net/2011/04/27/nuget-package-to-enable-swt-in...
  • Blog Post: Silverlight Claim-Based-Security Part-2

    In part 1 I talked about a simple approach to combine WCF Routing service and claims-based security and I got some questions about the sample code and routing service configuration. In this post, I’ll explain some additional scenarios and would provide link to the source code. In my original post...
  • Blog Post: Using Simple Web Token (SWT) with WIF

    SAML 1.1/SAML 2.0 is the default token format when using ACS as the authentication service for your website. In this model, your website talks to ACS using WS-Federation protocol and what it normally gets back is a Saml token. This scenarios is fairly straight-forward as WIF natively supports WS-Federation...
  • Blog Post: Silverlight Claim-Based-Security

    This would hopefully be a multi-part series showing some tricks to enable claims-based-security in Silverlight 4.0. Silverlight 5.0 would have a much better story around claim-based-security as mentioned here . In this first post, I’ll give you a high level overview of the solution. The main...
  • Blog Post: Securing WF 4 Workflow Services

    Our very own Zulfiqar Ahmed is a published author in this months issue of MSDN! To read his article please go to this link: http://msdn.microsoft.com/en-gb/magazine/gg598919.aspx
  • Blog Post: WCF Certificates in Compute Emulator

    Windows Azure SDK 1.3 introduced significant changes to the local development environment. The old DevFabric is broken down into “Compute emulator” & “Storage emulator” which are the local emulated environments for the compute and storage respectively. Azure SDK 1.3 uses...
  • Blog Post: Identity in the cloud: Access Control Service usage scenarios

    Our next SoundByte, “ Access Control Service usage scenarios ”, will be run on Friday 14 th January 2011 from 11:00 – 12:00 UK Time . The session is charged at the rate of 1 hour from your ADM contract for up to 2 Live Meeting connections (and unlimited attendees at each of these connections...
  • Blog Post: Initializing Auto-Start WCF/Workflow Services

    AppFabric AutoStart feature is built on top of IIS 7.5 AutoStart feature. IIS 7.5 provides an extensibility point where you can specify your custom initialization providers which will be executed as part of application start-up and gives you the ability to perform costly initialization. For example,...
  • Blog Post: ADM SoundBytes: Identity in the cloud

    Our next SoundByte is: "Identity in the cloud: Access Control Service usage scenarios" It is charged at the rate of 1 hour from your ADM contract. For this price you may have up to 2 Live Meeting connections, and you are of course free to use these to broadcast to a room full of people in...
  • Blog Post: Web Services Federation with ACS v2

    To start login into ACS Portal and create a new namespace: Once the namespace is activated, click on the manage link to open the ACS management portal: Switch to “Application Integration” page which list various endpoints exposed by the ACS Copy the URL of the WS-Federation...
  • Blog Post: WIF based OAuth WRAP Issuer

    WIF provides an API to develop Security Token Services (STSs) which can then be exposed using either WS-Trust (Active-STS) or WS-Federation(Passive-STS) protocols. As mentioned in last post, WIF currently doesn’t support OAuth WRAP protocol so out of box a WIF based SecurityTokenService cannot...
  • Blog Post: Using WIF for securing REST Service

    OAuth WRAP and SWT (Simple Web Token) have emerged as a standard way for employing claim-based-security to the REST services. Conceptually this model is very similar to the one used in SOAP world. A client goes to an issuer, authenticates itself using some token and gets back a different token (containing...
  • Blog Post: PasswordDigest authentication in WCF

    WS-Security UsernameToken Profile describes how a client can authenticate to a web service using a "username" and a password. Two variations of the password are defined as part of the specification which includes "PasswordText" and "PasswordDigest". Neither WCF nor WIF out of box support "PasswordDigest...
  • Blog Post: Using WIF with Workflow Services

    Windows Identity Foundation integrates with WCF at the host level (ServiceHost) and then various WIF extensibility points are invoked at different stages of WCF message processing pipeline. In this post, I will show how WIF can be integrated with Workflow Services to enable common security scenarios...
  • Blog Post: Integrating WIF with WF 4.0 and AppFabric

    WIF is framework to claim-enable ASP.net applications and WCF services. WF 4.0 introduced a new paradigm for developing services (known as Workflow Services), whose implementation is based on workflow. Windows Server AppFabric provides the hosting, management & monitoring capabilities for services...
  • Blog Post: X509 based proof keys with wsFederationHttpBinding

    When requesting a SAML token from an STS you can also request a proof token, which you can use to proof your ownership (by signing the primary signature with the proof token) of the token to the relying party when sending a SOAP message to it. In Identity terms, this is known as Holder-Of-Key subject...
  • Blog Post: Configuring SAML Assertion Subject Name and Format for a WIF STS

    In some interop scenarios, subject name and its format needs to be included in the Saml token/assertion generated by the STS. You can easily configure a WIF based STS to generate this by adding a NameIdentifier claim and by settings it’s format property. protected override IClaimsIdentity GetOutputClaimsIdentity...
  • Blog Post: Messaging activities intricacies

    WF 4 introduced messaging activities which provides a visual way of creating web services and their clients. In VS 2010 when you do “Add Service Reference” (in a workflow project), the wizard automatically generates activities and config in contrast to imperative code and config (the legacy way J )....
  • Blog Post: Custom ServiceHostFactory for a XAMLX based Service

    For IIS/WAS hosted services backed by a physical .SVC file (WCF 3.0/3.5) you can specify a custom ServiceHostFactory in the .svc file as part of service specification . There is no such declaration for XAMLX files and instead you can use config-based activation feature to achieve the same result. ...
Page 1 of 2 (36 items) 12