Windows Identity Foundation Active Authentication
https://stackoverflow.com/questions/4211674
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianQuestion
Maybe I'm going about this all wrong, but I'd like to take our Roles based ASP .NET Forms Authentication and port it to WIF so as to support federation with other applications.
I know this is a broad question, but how can I do Forms Authentication with WIF? Is this even a valid question or am I misunderstanding something? All the examples I've seen involve AD and STS. We don't even want to start hosting an STS server yet, but simply to structure the code in a claims based model so that we can pursue federated security going forward.
Any suggestions?
Solution
In a claims based architecture, you are generally not responsible for authenticating users anymore. Therefore, there're no more users/passwords, but you might still keep your roles.
I'd suggest reading the first couple chapters (quite short actually) of this guide
(caveats and disclosures: this is a MSFT centric guide, although you are working on that platform, and I'm one of the authors)
BTW: "Active Authentication" (although not exactly correct term) refers to web services mostly. "Passive clients" are usually web sites (your case).
OTHER TIPS
In case of claim based authentication single sign on , there comes some benefits of having Roles, if a user is authenticated to access Application1 and Application2 but not the Application3, this we can get from roles as we can specify this.
