federated-identity

问题 I'm trying to put together FederatedAuthentication with .NET 4.5, MVC 4, and active redirect using a custom server-side login page, using code from this tutorial, and from this code sample. Redirecting to the LogOn method of my AccountController works fine, and the method looks like this: public ActionResult LogOn() { HrdClient hrdClient = new HrdClient(); WSFederationAuthenticationModule fam = FederatedAuthentication.WSFederationAuthenticationModule; /*** Fails here because this is null **/

问题 I have a situation where we have a MVC 2 application(I tried this with a basic MVC 2 app without any extra stuff, still same problem) and am using adfs 2 for authenticating my users. So.. Now I get into my application and I get the below.. ID3206: A SignInResponse message may only redirect within the current web application: '/[app]' is not allowed. Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information

问题 I'm trying to set up a basic website (serverless on AWS) that would allow visitors to login with Google and/or Facebook. Currently I'm planning to use S3, Cognito with Federated Identities, API Gateway, Lambda (NodeJS), with DynamoDB. The client app will be using Angular. I have the social login with Google and Facebook working, and currently I am inserting a row in a "users" table when a user logs in the first time that includes the cognitoId, name, profile picture URL, etc. I also figure it

问题 What the claim of type http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier should be used for? This is the main question, and here are additional ones. How does it differ from http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name claim? Is it permanent for particular user as opposed to name claim? Is it globally-scoped or IdP-scoped? 回答1: Name , is just that a name. If we're talking person, think "Eric"; a server "file01". A NameIdentifier is the ID for an object.

问题 I'm using App Engine / java. I need to migrate my Yahoo users from OpenID 2.0 to OAuth 2.0 login (OpenID Connect), because OpenID 2.0 Relying Party support for logging in with OpenID 2.0 accounts in to App Engine will be turned off. For my Yahoo users, I have following information in my datastore: federated identity: https://me.yahoo.com/a/... email address When I implement Sign-in with Yahoo using OAuth, I need to use the information provided by the OAuth process to identify the existing

问题 i'm looking for a replacement of the Microsoft Federation Utility (FedUtil) from the WIF SDK, which allows me to automatically update (especially) the trustedIssuers list inside a web.config. The old FedUtil could to this with /m /u as parameters. Now the tool is included in VisualStudio and MS claims, there's no standalone replacement for FedUtil (refer to: http://msdn.microsoft.com/en-us/library/jj157089.aspx). My question is: Do i have to do the updates manually now or is there some

问题 I need to implement an Identity provider service (using node.js) that should be able to. Get, validate and parse (using private key and cretificate) the authentication request from SP example If everything is valid, respond with a signed XML response example Is there a tool in node.js that can handle the IdP side of SAML protocol. i'm familiar with samlify, saml2, passport-saml, and all of them seem to handle the Service provider side of the protocol. If the packages mentioned here can serve

问题 I have the following challenge: My company needs to enable SSO for a customer that has its own ADFS instance & IP in place. (in the future I'm sure we will need to federate with other companies too) We also need to continue to support customers authenticating against our SQL database. Basically I think what I need to do is set this up as described here http://msdn.microsoft.com/en-us/library/hh446524.aspx, but I would like to do this all using thinktecture identity server and not use ADFS. To

问题 I configured the identity pool with cognito user pool and Facebook as providers. Enable access to unauthenticated identities. Used javascript sdk to connect from browser. Got an identity (unauthenticated of course) back. Now, just for kicks, I deleted the identity from identity browser. After that I am getting 400 error with "ResourceNotFoundException". I am a newbie playing with AWS Cognito Identity Pool. I have a silly question which I could not find answer anywhere. When/Why do we delete

问题 I have two applications "http:/localhost/applicationA" and "http:/localhost/applicationB" . I have configured applicationA for claim based authentication settings. applicationA is working perfectly. But I am refering some javascrips of applicationB from applicationA. But applicationB has no the authentication cookies( FedAuth ). Is it possible for me to add claim authentication in both applicationA, applicationB using the below code? <system.identityModel> <identityConfiguration>