diTii.com Digital News Hub

Sign up with your email address to be the first to know about latest news and more.

I agree to have my personal information transfered to MailChimp (more information)


Windows Identity Foundation (WIF) Developer Toolkit with ‘Videos & Slides’ of WIF training event – WIF Workshop Videos

Windows Identity developer toolkit update is now available. The new release doesn’t contain any new labs, however it now include a complete set of slides on Windows Identity Foundation and embedded players pointing to the video recording of the latest WIF Workshop in Redmond has now been published. The toolkit supports both Visual Studio 2008 and Visual Studio 2010.

WIF Workshops:

  1. Introduction to Claims-Based Identity and WIF sessions includes: the problems it solves, canonical authentication scenario, key concepts and terminology. The main WIF API surface for non-security developers is introduced:

  2. Lab on Basic Web Sites offers an overview of what can be achieved when using WIF with Web sites: authentication externalization, integration with IsInRole and ASP.NET authorization, customization of app via claims, claims-based authorization. This video introduces viewer to the lab format and gives some advices about lab execution:

  3. Scenarios and Architecture I session is about difference between IP-STS and FP-STS and how to choose where to put STSes in your architecture. You’ll learn about federation, home realm discovery and how to leverage WIF extensibility model in order to handle multiple identity providers:

  4. Scenarios and Architecture II session explores architectural implications of using claims for authorization purposes:

  5. Lab about Web Sites and STS workshop explores patterns discussed in former section. One lab demonstrates how generic web site can be enhanced with identity provider capabilities regardless of authentication technology it uses, simply by adding STS page. Another lab shows how to use existing membership store for authenticating calls to a custom STS and sourcing claim values:

  6. WIF ASP.NET Pipeline and Extensibility Points session explores in depth how WIF tackles sign-in scenario. After general intro to WIF configuration element, session describes how WS-Federation is used for driving various browser redirects which ultimately constitute sign in experience. Most time is spent digging deep in how WIF leverages ASP.NET HttpModule extensibility mechanism and its own classes & events for implementing sign-in sequence:

  7. WIF and WCF session describes in detail difference between passive and active scenarios, specifically around confirmation method for toekns (bearer vs. holder-of-key). WIF object model and WCF integration are discussed, with special attention to similarities to what has been seen for ASP.NET case and differences with traditional, WCF-only programming model. The notion of trusted subsystem is explored at lenght, providing backdrop for introduction to WSTrustChannel, CreateChannelActingAs and CreateChannelWithIssuedToken:

  8. Lab about WIF and WCF explores idea of delegated service call via ActAs tokens the exercise from Web sites lab shows how to from an ASP.NET to a WCF backend, while the one from WCF lab focuses on flowing identity info through a chain of services calls. The first exercise of WCF lab doesn’t use an STS for authentication. It uses username & password credentials, and is designed to highlight differences between old WCF-only model and enhanced model offered by WIF:

  9. WIF and Windows Azure session covers the use of WIF in Azure. After a quick introduction Azure and infrastructural differences between web roles and on-premises deployment, the session provides practical advices on aspects of distributed development such as handling NLB sessions, certificate management, dealing with volatile app URI, handling tracing, metadata generation considerations, and so on. The discussion covers both Web roles and WCF roles:

  10. Lab about WIF and Windows Azure covers use of WIF on Azure, demonstrating in practice how to cope with NLB sessions, volatile app URI, dynamic configuration, metadata generation, tracing and so on:

Download: Identity Developer Training Kit

[Source | Via]

Share This Story, Choose Your Platform!