Mgmt Config sample for WLID / Facebook Connect sample

Now that we have a mgmt tool, I can provide you with a template so you can setup the ACS part of the WLID / Facebook Connect sample with less effort. Here’s the XML configuration: <ServiceNamespace xmlns:xsi=”http://www.w3.org/2001/XMLSchema-instance” xmlns:xsd=”http://www.w3.org/2001/XMLSchema”> <Issuers> <Issuer handle=”acswebauth”> <IssuerName>acswebauth</IssuerName> <Algorithm>Symmetric256BitKey</Algorithm> <CurrentKey>gyiepxNtc7RkCZuvV6FyEPWOp788uc1T0DMSZ9c/5QA=</CurrentKey> <PreviousKey>bAO0llCgF5C00GW/h7Zp0lt2WAe3WRrdIj42UMbds+A=</PreviousKey> </Issuer> </Issuers> <Scopes> <Scope handle=”root”> <AppliesTo>http://acswebauth.com</AppliesTo> <TokenPolicyHandle>root</TokenPolicyHandle> <Rules> <Rule handle=”wlidpassthrough”>…

2

ACS integration with Windows Live ID & Facebook Connect

I’ve received several requests regarding ACS and Windows Live ID integration for websites. This post describes what you can do with ACS and Windows Live ID today (with the new release of ACS). It takes a bit of code, but the integration is pretty straightforward. Note that this code isn’t hardened and it relies heavily…

15

ACS SAML / ADFS v2 Sample

The November 2009 CTP of ACS integrates with Active Directory Federation Server v2. ACS can act as a bridge between enterprise identity and REST web services. The runtime flow is pretty simple (shown below). At runtime, the client app requests a SAML bearer token from AD FS v2. The easiest way to do this is…

11

Management Browser uploaded

Since releasing the new version of ACS on Nov 5, we’ve received quite a bit of feedback that we should provide a UI for managing ACS rules/scopes/issuers/token policies. In response, Cyrus put together a little WPF app that does the trick. It’s available on MSDN code gallery here: http://code.msdn.microsoft.com/acmbrowser In the coming milestones, we are…

4

Access Control Service (M7) released today!

Today is a big day for the Access Control Service team. M7 is now live. There are a few huge changes: It is running on top of Azure (fabric and storage) We incorporated a new community driven protocol and token format (Web Resource Authorization Protocol (WRAP) and Simple Web Tokens (SWT)) Relying Parties and Requestors…

0