wif

I have an ASP.NET MVC application with Windows Identity Foundation authentication enabled with ADFS as STS. The application is now on .NET 4.5 with MVC 4. When I change the ASP.NET requestValidation from 2.0 to 4.5, I get this error: A potentially dangerous Request.Form value was detected from the client (wresult="<t:RequestSecurityTo..."). I guess this is the redirect from ADFS. How can I fix this? Upgrade your application to use WIF 4.5 included in the framework: http://msdn.microsoft.com/en-us/library/jj157089.aspx Set RequestValidation to 4.5 mode: <httpRuntime targetFramework="4.5"

I'm enabling an windows identity foundation on an existing webapp. I want to mess as little as possile with the existing code so I would like to the login page which uses formsauthentication left in the application and I just connect with the STS if the user enters the application via a specific page e.g "im_comming_from_some_other_site.aspx". in the "im_comming_from_some_other_site.aspx" the code would be like: Page_Load(...) { if(verifyAgainstSTS() { FormsAuthentication.SetAuthCookie(<some_STS_Userid), ...) Response.Redirect("default.aspx") } else { Response.Redirect("http://<STS_server_name

I've got the WIF tools for VS2012RC, and I'm trying to get my ASP.NET MVC 4 project to use them. I've installed the NuGet package for Microsoft.IdentityModel.dll. The MVC project is part of an Azure project, but I have the MVC project selected for startup right now. Currently, I have the "Local Development Test STS" selected (with the default settings). When I execute the following code (in my HomeController Index view): <p>Authenticated: @User.Identity.IsAuthenticated</p> <p>Name: @User.Identity.Name</p> @{ var identity = User.Identity as Microsoft.IdentityModel.Claims.IClaimsIdentity; if

I have created a new ASP.NET MVC application with .NET 4.5. I have successfully set up authentication with an STS. The authentication flow is working fine and I am able to get the ClaimsIdentity, containing the desired claims, on Thread.CurrentPrincipal. Now I need the bootstrap token to secure the calls to my service layer. I have set the saveBootstrapContext to true on the identityConfiguration element. <system.identityModel> <identityConfiguration saveBootstrapContext="true"> However, the BootstrapContext property on the ClaimsIdentity is always null. var identity = Thread.CurrentPrincipal