Published
Wednesday, April 05, 2006 6:28 AM
by
admin
I spent some time working with the federated security sample that comes with the Feb CTP of WCF. I decided to post a modified version of that sample, because I think it clarifies some points that I found confusing. Here are the changes I made...
1. I removed the svcutil-generated custom binding definitions from the client's app.config file, and replaced them with more human-readable versions.
2. The communication between client and HomeRealmSTS uses https, with username and password credentials on the message. The STS uses an ASP.NET membership provider to check those credentials.
3. The original sample uses the same certificate everywhere. Mine has 4, one each for client, HomeRealmSTS, BookStoreSTS, and BookStoreService. The client's certificate has only client authentication capability, the others have only server authentication capability.
4. As a consequence of that change, I had to modify the BookStoreSTS code so that it identifies its own certificate and that of the HomeRealmSTS separately. The original sample simply names one certificate and uses it for two different purposes.
As with the original, my sample has scripts that create the vdirs and certificates.
Click here to download my sample.
Update: I've posted a modified version of this sample to work with Beta 2 of WinFX. See here.