Presentation is loading. Please wait.

Presentation is loading. Please wait.

Caleb Baker Sr. Program Manager

Published by己监 曹 Modified over 5 years ago

Similar presentations

Presentation on theme: "Caleb Baker Sr. Program Manager"— Presentation transcript:

1 Caleb Baker Sr. Program Manager calebb@microsoft.com
Using Windows Identity Foundation For Creating Identity-Driven Experiences in Silverlight Caleb Baker Sr. Program Manager

2 Agenda Identity and Claims Using Claims in Silverlight Wrap Up

3 What are the Opportunities with Identity?

4 The Basics Identity is Used to: Control Access Authentication
Authorization Personalize an Experience

5 Identity Silos

6 Tear Down the Silos! Identity is Reusable Removes Complexity for your Application

7 Identity As a Service Your Application Identity Provider

8 Application Claims Identity Provider

9 Claims A Statement Made by One Entity About Another Entity
A Type of Information Containing a Value over 21 According to Whom Department of Licensing

10 Examples Address Age Frequent Flier Employer Gender
Name Address Age Frequent Flier Employer Gender Information about a user your app needs

11 Demo Scenario

12 The Companies A large widget producer.
An events planning start-up, which just won a contract with Contoso.

13 Challenge How Can Fabrikam Provide Access for Contoso Users?

14 First Solution Users Can register Using Their Work

15

16 This works, but there is an easier way

17 Another Solution Use a claims-based approach

18 Claims Identity Provider Identity Provider Identity Provider

19 Claims Identity Provider

20 How Claims are being sent
Communication of Claims WS-Federation WS-Trust What’s Important is these are Standards based. Which Means they Work With other Solutions.

21 The Ingredients Silverlight 3 or 4 Silverlight SDK
Windows Identity Foundation Windows Identity Foundation SDK Training Kit Sample assemblies SL.IdentityModel.dll SL.IdentityModel.Server.dll

22 Demo

23 Review Fabrikam used Contoso Identities To Authenticate Users
To Customize the User Experience Reduce Friction and Complexity

24 Out Of Browser Moving Out Of the Browser Presents pProblems with Browser Based Authentication

25 Challenge Requesting Claims to Sign in to Fabrikam from Out of Browser. Browser Redirect work

26 Request Claims Using a Web Service
Solution Request Claims Using a Web Service

27 Solution Request Fabrikam Relying Party Response Identity Provider

28 Demo

29 Control Access Grant access control based on claims
Employees should be able to view events Managers can schedule events

30 Challenge How does Fabrikam know who is a manager at Contoso?

31 Option one One way to solve this is with an administrator accounts

32 Solution without claims

33 Perform Access Check Using Claims
Solution With Claims Perform Access Check Using Claims

34 Demo

35 Mashup Goals for Contoso’s Event Planner Application
Managers can query a local directory for a list of employees. Call the Fabrikam service with list of invitees.

36 Challenges How to authenticate a cross site call?

37 First Solution Have the user provide credentials required to access the service

38 Username Password Username Password

39 Claims Based Solution The Contoso Client Application Requests Claims for Fabrikam

40 Identity Provider Silverlight Application Events Web service

41 Demo

42 Security Considerations
Cross domain call requires Fabrikam to publish one of the following ClientAccessPolicy.xml CrossDomain.xml

43 Cross domain token reuse
What prevents Fabrikam from accessing the Contoso service as the user?

44

45 Available resources Active Directory Federation Services 2.0
Windows Identity Foundation Released Nov. 2009 Active Directory Federation Services 2.0 (AD FS RC 2.0) Released the first half of this year Training Kit: Team blog:

46 Feedback What seems interesting What else would you like to see? Windows Phone 7? Forum:

47 Please fill out Session Evaluations

48 Q & A

49 © 2010 Microsoft Corporation. All rights reserved
© 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Download ppt "Caleb Baker Sr. Program Manager"

Similar presentations

© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.

© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.
© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.

© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.
Windows 8 (1) (2) (3) Windows 8 (1) (2) (3)

Windows 8 (1) (2) (3) Windows 8 (1) (2) (3)
Feature: Identity Management - Login © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.

Feature: Identity Management - Login © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.
© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.

© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.
© 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.

© 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.
Feature: Reprint Outstanding Transactions Report © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product.

Feature: Reprint Outstanding Transactions Report © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product.
Feature: Purchase Requisitions - Requester © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.

Feature: Purchase Requisitions - Requester © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names.
MIX 09 4/15/2017 11:14 PM © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.

MIX 09 4/15/ :14 PM © 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.
Feature: Payroll and HR Enhancements © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.

Feature: Payroll and HR Enhancements © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or.
Co- location Mass Market Managed Hosting ISV Hosting.

Co- location Mass Market Managed Hosting ISV Hosting.
Windows 7 Training. Windows ® 7 Compatibility Installer Detection.

Windows 7 Training. Windows ® 7 Compatibility Installer Detection.
Windows 7 Training Microsoft Confidential. Windows ® 7 Compatibility Version Checking.

Windows 7 Training Microsoft Confidential. Windows ® 7 Compatibility Version Checking.
www.sitemasher.com Multitenant Model Request/Response General Model.

Multitenant Model Request/Response General Model.
Feature: Purchase Order Prepayments II © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are.

Feature: Purchase Order Prepayments II © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are.
Announcing Demo Announcing.

Announcing Demo Announcing.
Feature: OLE Notes Migration Utility

Feature: OLE Notes Migration Utility
Feature: Web Client Keyboard Shortcuts © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are.

Feature: Web Client Keyboard Shortcuts © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are.
© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.

© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or.
Session 1.

Session 1.

Similar presentations

Ads by Google