claims-based-identity

问题 I'm migrating forms authentication in webforms across to Microsoft Identity. When creating a SessionSecurityToken using a ClaimsPrincipal cp object, I have this code: Dim token As New SessionSecurityToken(cp, TimeSpan.FromMinutes(30)) However, in web.config I also see this: <configSections> <section name="system.identityModel" type="System.IdentityModel.Configuration.SystemIdentityModelSection, System.IdentityModel, Version=4.0.0.0, Culture=neutral, PublicKeyToken=B77A5C561934E089" />

问题 I want to change the Authentication Provider from Kerberos to Claim-Based in my SharePoint 2010 Enterprise Edition environment. What problems can occur in my SharePoint environment? I heard that there are problems with the RSS Reader Webpart if the Webpart consumed a feed from my SharePoint. It will probably not be usable with Claim-Based Authentication. Are there other problems like this? 回答1: You mean that you want to change from classic authentication to claims-based authentication. Claims

问题 I'm trying to decide if the custom Authorization attribute I wrote is really a good idea. Scenario Say we have a collection of stores, each Store has an owner. Only the owner of the store can do CRUD operations on the store. EXCEPT for users with a Claim that basically overrides the ownership requirement and says they can do CRUD operations on ANY store. Sidenote: I'm using Thinktecture and ADFS So I made a StoreOwnerAuthorize attribute who's parameters ("Manage", "Stores") are used to check

问题 In System.IdentityModel.Claims there are three entries: UPN, Name and NameIdentifier "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name" "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn" "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier" While debugging after authentication with AzureAD, OpenIdConnect and Office365. I see that name and upn are always the same, something that looks like the 'email' of a given user: e.g. johndoe@contoso.com or johdoe

问题 I am working on a single page application using AngularJS and ASP.NET Identity 2. I log the user in and the cookie is set; however, when I check the Identity of the user on the same request, it shows it as blank and IsAuthenticated is false. However, these are populated on subsequent requests. I was hoping to send back to the UI whether or not the user was logged in on the same request. Is this possible? Code as requested (AngularJS makes AJAX post into WebAPI controller Login method)

问题 I've got an asp.net MVC 5 web project which is running fine on my development system. But for some reason, the login using Microsoft Owin with Facebook stops working as soon as I deploy the solution on my production system. The callback always retrieves ....error=access_denied as parameter and I tracked it back to the fact that owin returns null for my identity. Any clue whats going on here? UPDATE I implemented log4net in my Owin code and was able to dive deeper: Response status code does

问题 I am in the process of writing a custom .Net app that utilizes Claims for security, since we're crossing many boundaries - web, API, batch processing and so on. During development, there are occasions where I'll create something in the system while logged in via Chrome and then I'll go to test the newly created item via a different account in Edge and somehow HttpContext.Current.User.Identity corresponds to my Chrome session. I do set Thread.CurrentPrincipal behind the scenes, but my

问题 I have created a new ASP.NET MVC application with .NET 4.5. I have successfully set up authentication with an STS. The authentication flow is working fine and I am able to get the ClaimsIdentity, containing the desired claims, on Thread.CurrentPrincipal. Now I need the bootstrap token to secure the calls to my service layer. I have set the saveBootstrapContext to true on the identityConfiguration element. <system.identityModel> <identityConfiguration saveBootstrapContext="true"> However, the

问题 I am new to claim based authentication. I have gone throught several aricles and could not able to figure out the exact use of claim based authentication. Here are some doubts I have about claim based authentication. I would like to know what is the difference and advantages of claim based over role based authentication. Can we connect to Sql Server 2008 R2 using claim based authentication instead of ADFS? If, so how? Advantage of using claim based authentication in WCF? Can anyone provide me

问题 I can see from Mono Status that System.Security.Claims is not implemented. Does anyone know if it's possible to implement "ClaimsIdentity" in Mono? Is there a project that handles Claims based Identity in Mono? 来源： https://stackoverflow.com/questions/21101170/claimsidentity-system-security-claims-in-mono