Browse by Tags

Mgmt Config sample for WLID / Facebook Connect sample
15 November 09 01:41 PM | justinjsmith | 1 Comments   
Now that we have a mgmt tool , I can provide you with a template so you can setup the ACS part of the WLID / Facebook Connect sample with less effort. Here’s the XML configuration: < ServiceNamespace xmlns:xsi ="http://www.w3.org/2001/XMLSchema-instance" Read More...
ACS integration with Windows Live ID & Facebook Connect
15 November 09 01:20 PM | justinjsmith | 0 Comments   
I’ve received several requests regarding ACS and Windows Live ID integration for websites. This post describes what you can do with ACS and Windows Live ID today (with the new release of ACS). It takes a bit of code, but the integration is pretty straightforward. Read More...
ACS SAML / ADFS v2 Sample
14 November 09 02:55 PM | justinjsmith | 2 Comments   
The November 2009 CTP of ACS integrates with Active Directory Federation Server v2. ACS can act as a bridge between enterprise identity and REST web services. The runtime flow is pretty simple (shown below). At runtime, the client app requests a SAML Read More...
Management Browser uploaded
14 November 09 11:15 AM | justinjsmith | 2 Comments   
Since releasing the new version of ACS on Nov 5, we’ve received quite a bit of feedback that we should provide a UI for managing ACS rules/scopes/issuers/token policies. In response, Cyrus put together a little WPF app that does the trick. It’s available Read More...
Web Resource Authorization Protocol (WRAP) and Simple Web Token (SWT) on google groups
05 November 09 04:17 PM | justinjsmith | 2 Comments   
The Access Control Service uses a new community protocol and format that are now posted on google groups: http://groups.google.com/group/wrap-wg http://groups.google.com/group/oauth-wrap-wg Check em out. If you are a security geek, it’s worth the read Read More...
Access Control Service (M7) released today!
05 November 09 03:58 PM | justinjsmith | 0 Comments   
Today is a big day for the Access Control Service team. M7 is now live. There are a few huge changes: It is running on top of Azure (fabric and storage) We incorporated a new community driven protocol and token format (Web Resource Authorization Protocol Read More...
Access Control Service and ADFS v2 demo
07 October 09 04:42 AM | justinjsmith | 0 Comments   
In my last post I outlined the changes that were coming in the Access Control Service. Since that post, I’ve received many questions about how ACS will integrate with ADFS v2. Below is a link to a simple demo I put together to highlight this very cool Read More...
Access Control Service – Roadmap for PDC and Beyond
28 September 09 08:48 AM | justinjsmith | 3 Comments   
We are in the process of making some key design changes to the Access Control Service (ACS) for our PDC release this fall. I think these changes will bring tremendous benefits to ACS customers in the near-term, but the changes break all ACS-related code Read More...
Client Certificate Credential Verification
31 July 09 09:36 AM | justinjsmith | 0 Comments   
Over the past few months, several people have asked me how to accept client certificates on a service. The scenario is something like the following: A web service owner wants to limit access to the service to authorized clients authorized clients identify Read More...
Mix 09 Deck
28 April 09 07:53 AM | justinjsmith | 1 Comments   
For some reason the slide deck I presented at Mix didn’t show up on the Mix 09 website. If you are interested in the deck, see the link below. Read More...
Interesting article on Azure Services
26 March 09 01:20 AM | justinjsmith | 1 Comments   
Today I caught up on some press material on Azure Services. For those that haven’t seen it, the picture version of Azure Services is below: One article published in late February popped out at me: http://blogs.zdnet.com/microsoft/?p=2173 . Among other Read More...
TokenClient (Mix) introduction
24 March 09 10:53 PM | justinjsmith | 2 Comments   
This week at Mix I demonstrated a new experimental client API (TokenClient) for interacting with the Access Control Service (ACS). The purpose of this API is to simplify the developer interaction with the ACS Security Token Service. It still uses WS-Trust Read More...
Federated website sample
12 February 09 02:19 PM | justinjsmith | 1 Comments   
The Geneva Framework FAM is the simplest way to experience ACS and ASP.NET. My friends in platform evangelism wrote a cool app that uses ACS, LiveID, and the Geneva Framework. It's called issuetracker, and I recommend checking it out: http://www.codeplex.com/azureissuetracke Read More...
Setting up a solution in .NET Services
16 January 09 02:35 PM | justinjsmith | 0 Comments   
My co-worker Jenny Lo wrote a good post on how to get started with .NET Services. If you are wondering how to get started this should do the trick. https://blogs.msdn.com/jennylo/archive/2008/11/04/a-step-by-step-guide-from-creating-a-net-services-solution-to-running-the-multicast-sample.asp Read More...
Access Control Service - Common Interaction Model
16 January 09 09:32 AM | justinjsmith | 1 Comments   
In my previous post I described at a high level a simple scenario that leverages the Access Control Service. Now I'd like to describe the interactions between messaging participants and the .NET Access Control Service. Recall the scenario: a multi-tenant Read More...
More Posts Next page »
Page view tracker