Vittorio Bertocci

Scatter thoughts

Browse by Tags

Tagged Content List
  • Blog Post: Using AAL to Secure Calls to a Classic WCF Service

    [you do remember that this is my personal blog and those are my own opinions, right? ;-)] After the releases we’ve been publishing in the last few months, I am sure you have little doubt that REST is something we are really interested in supporting. The directory uses OAuth for all sorts of workloads...
  • Blog Post: How WIF Wedges Itself in the WCF Pipeline

    if it’s true that a picture is worth 10^3 words… Without the carrot/stick of the book I would have never spent the cycles to put together a visual representation of it, but now that it’s done I am glad I did it. It’s so much simpler to think about how the flow goes, just by looking at the picture… but...
  • Blog Post: Protecting Workflow Services with WIF

    It’s since March 2007 that WCF and WF started their mind meld (remember Orcas?) and I am tempted to say that in the .NET Framework 4 the process is pretty much complete. Want proof? You can use WIF for handling access to a Workflow Service just like you would do with a classic pure WCF service. Want...
  • Blog Post: Identity Developer Training Kit March 2010 update: WIF+Silverlight, WIF+WCF on Windows Azure

    Are you ready to roll? I have just flipped the publish bit on the March 2010 update of the Identity Developer Training Kit ! The new release contains various fixes and improvements, but above all it contains two brand-new labs about two scenarios you asked for loud and clear: Web Services and Identity...
  • Blog Post: An Identity Provider and its STS: writing a custom STS with the October Beta of the Geneva Framework

    [Disclaimer(): base() { this blog is NOT the source of the official guidance on the Geneva products. Please always check out the Geneva team blog for hearing directly from the product group} ] In the former installment I blabbered a bit about how an STS is a serious matter, and I can almost visualize...
  • Blog Post: Windows CardSpace helps Eduserve to fuel DreamSpark authentication

    I am sure you are all more than familiar with DreamSpark , the amazing (YES, amazing. Bravo Milo!) offer through which Microsoft gives access to developer & designer tools at no charge. That requires, naturally, to be able to prove that you are indeed a student. Eduserv is a not-for-profit UK-based...
  • Blog Post: Setting up a quick & dirty STS which supports smartcard backed managed cards... using Zermatt

    Just back from vacation. The tan barely started to fade, and here I am already playing with the new shiny toy :-). Did you experiment with Zermatt by now? As Kim mentions the samples (and the documentation) are an excellent way to start, and I am sure that blog posts & tutorials will soon start mushrooming...
  • Blog Post: Announcing the Beta release of “Zermatt” Developer Identity Framework

    Ahh, I’ve been looking forward for this post for a looong time. We just made available for download the bits of the Beta of “Zermatt” Developer Identity Framework . “ Zermatt ” is the codename of a .NET framework that helps developers build claims-aware applications to address challenging application...
  • Blog Post: Hide svc extension from your REST services with the URLrewrite module for IIS7

    I am now focusing exclusively on identity & services, true, but certain news about former interests of mine are just too good not to share. While evangelizing the web capabilities of WCF introduced in the framework 3.5, one of the most recurring questions was about hiding the svc extension for WCF...
  • Blog Post: New version of the Biztalk Services SDK available, now with support for managed cards

    Almost one year ago I briefly mentioned the Biztalk Service SDK, here and here . A new version has recently been made available: you would not believe the amount of new features that were added to it in this timeframe. The main reason of excitement for me is that this new release supports managed cards...
  • Blog Post: WCF & REST at MIX08: The Tale of MySpace APIs

    [Update: we received notice that not all of you were able to download the video . We fixed the issue already friday night, it should work for everybody. Enjoy! Thanks to Terje for the first headsup] Yesterday we finally had the session about the making of MySpace APIs . As you'll be able to see from...
  • Blog Post: CardSpace & surveillance

    Well, don't get fooled. I'm not going to make any big philosophical considerations about technology and privacy (though I may do that in the future), but I will talk about the little project I've put together after three gintonics & the MIX party at TAO . I am often on the road. When I am homesick...
  • Blog Post: While I was sleeping...

    [There's not much tech content in this post. You read it all at your risk :-) the next posts will get the technical discussion back on track from where we left it a couple months ago] From the all time record of 17 posts in June, this feed dropped to next to 0 activity in the last 2 months. in fact,...
  • Blog Post: Channel9 parla italiano!

    Dear English readers, this post announces the first Channel9 video entirely in Italian language . As such, the rest of the post is going to be in Italian. E allooooora :) Dopo mesi che meditiamo sull'iniziativa, abbiamo deciso di dare spazio su channel9 a contenuti in lingue diverse dall'inglese. E per...
  • Blog Post: A (fiscal) year in review

    It's that time of the year again: the end of June marks the end of the fiscal year, and for us it's time to reflect on what we've done in the past 12 months. Vast majority of the things I've done are internal-only or with high profile customers that can't be mentioned publicly until their PR departments...
  • Blog Post: Build castles in the Cloud with the new drop of the BizTalk Services SDK

    Yesterday night I was going through the unresolved parts of the inbox, a fairly boring task, when Dennis rescued me: he chimed in via Messenger reminding me that a new version of the BizTalk Services SDK is out. It wasn't hard to switch my attention to something far more exciting, and I promptly installed...
  • Blog Post: A RESTful CardSpace: sending tokens using the new WCF AJAX Services in Orcas

    In short: this is the description of a sample that sends a CardSpace-obtained token to an AJAX service implemented with the new Orcas features. Few posts ago I published a tutorial about using CardSpace with Silver. While talking about it with Kushal Shah from the Workflow team, he suggested that...
  • Blog Post: A Silver CardSpace: securing Orcas Workflow Services with Windows CardSpace

    In short: this is a step by step tutorial for creating from scratch a Workflow Service with the Beta 1 release of Visual Studio codename "Orcas". The tutorial shows how to secure the service with Windows CardSpace, how to create a client application on the fly and how to access claims from the code of...
  • Blog Post: Debugging STS code

    Periodically I hear people having issues with debugging STS code from CardSpace based scenarios. When you invoke an STS by selecting a managed card, you do that from the private desktop; that means that you can;t access your interactive session until the call to the STS returns, but if the STS code is...
  • Blog Post: Securing a Sidebar Gadget with Windows CardSpace and WCF

    In short: I discuss Sidebar Gadgets, and I show you how to invoke a CardSpace-protected WCF service from a simple Gadget. Full source code is provided, along with detailed commentary on the road I've followed for getting there. Added bonus: the code shows how to apply an arbitrary configuration file...
  • Blog Post: Microsoft Enterprise Application Development Platform Update

    Tomorrow afternoon I'm speaking at the event described below. For the demo part I think I will show the mighty DinnerNow , the brainchild of my excellent teammates ( James , Matt , Craig , David , Nigel to name a few). If you have even a slight interest on our technologies, you should definitely check...
  • Blog Post: Otto Store: walking through the CardSpace experience

    If you are watching the Card-space, I'm sure you didn't miss it: the Otto Store smart client application, announced during TechEd Europe and VSLive, is now up and running. You can download and install it from there . This news is relevant to this blog in different ways. The Otto store is the first...
  • Blog Post: Cardspace, Orcas和学中文字

    [for my usual readers: yes, this is Chinese. That's intentional :-)] <对不起我的不对用语> 你好!我叫维托里奥,我建筑学的启动子在Microsoft corp. 我特化是Windows Server,格外Windows Cardspace, WCF, WF和崭新Orcas. 我去年会面了多顾客在上海,深圳,香港,台北,新加坡...我查出了我喜爱中国文明. 我上九月俶识字中文字.我每天读书不过稍微,十分钟.艰巨! 但是我要识字,多好课文是汉语. 我下二月来到新加坡.你想会面,你晓示我透过此网络日记:-) </对不起我的不对用语>
  • Blog Post: Want to play with a real IP-STS in the cloud? Help yourself!

    Hervey , Dennis and their team just went live with, no pun intended, the all new & improved live labs STS !! While the former incarnation was a pure resource STS, this is a full fledged Identity Provider STS. If you have a Live ID, you can go throught the easy steps of the registration and get...
  • Blog Post: Using Simple STS and managed cards with the simple WPF sample

    Well, what a alliterative title :-) I've been asked in several occasions how to use managed cards, and specifically the simple STS sample , together with the surprisingly popular WPF smartclient sample . It is not especially difficult: few changes in the configuration and you're all set. The only...
Page 1 of 2 (28 items) 12