HACK: Forcing FBA Token Refresh against SPClaimProvider with No Credential Challenge

The approach takes advantage of the SP 2010 OOB Session Token handler and FBA claims provider implementation that during a period of token lifetime, if there is activity during the period of time that can be defined as "EW" in the image in the section "Background" below, that the SPSecurityTokenManager will, with the FBA provider,…

0

Welcomed Addition to the WIF Family–SAML-P WIF Extension CTP

This is a very nice addition and will make development across the various WebSSO protocols that much easier. Announcing the WIF Extension for SAML 2.0 Protocol Community Technology Preview! – Claims-Based Identity Blog – Site Home – MSDN Blogs

0

SAML Request / Response decoding.

When you’re working with Web SSO integration, sometimes it’s helpful to be able to decode the tokens that get passed around via the browser from the various participants in the trust – RP, STS, etc. With SAML tokens, sometimes they’re simply base64 encoded when they’re in the POST body; other times they’re part of the…

0

Certificate management for developers

There’s no doubt that certificate management, when you haven’t futzed with it for some time, is a fun time… Raffaele Rialdi has the start of what looks like a promising tool to help manage the process of managing and deploying certificates for services (WCF) and a bunch of other tasks. http://www.iamraf.net/Tools/DeployManager-first-release-certificates-management

0

Federation Metadata Generation Tool

Disclaimer: Use at your own risk – no warranties are granted or implied UPDATE: this has been moved to Github here: https://github.com/cicorias/federationmetadatagenerator  If you’ve worked with Windows Identity Foundation (WIF) without the help of ADFS 2.0, you’ll run into situations where you’ll need to potentially generate or regenerate the metadata used for federation. Additionally, while WIF…

0

Wildcard Certificates and IIS7

Let’s face it, during development, managing all the certificates if you’re doing anything with validating SSL/TLS traffic is a pain. Now with Windows Identity Foundation (fka Geneva) we really have to get crackin on getting used to managing certificates, setting up SSL sites, etc. So, here’s great post on setting up IIS7 to use wildcard…

0

SharePoint 2010 and Claims Based Awareness

The industry it moving towards identity standards, and with the recent release of Windows Identity Foundation (fka Geneva), and the beta of SharePoint 2010, it’s important to take a look at the direction of how identity is being normalized into a “service” within the SharePoint object model. With SPS 2010, the SPUser object is now…

0