With Windows Identity Foundation (WIF), it’s fairly simple and well-documented on how to consume claims in your claims-aware web application. What isn’t entirely clear is how to reload these claims when updates are made to the user’s information. How do we refresh the claims, which are stored in an encrypted SAML token cookie? Read more…
Out of the box, Active Directory Federation Services (AD FS) 2.0 comes bundled with several endpoints to support different protocols (WS-Trust, WS-Federation, etc.), credential types, and security modes. These endpoints are used for communication to the STS so if you have an application that needs to receive tokens via WCF, you can connect to one of the provided endpoints depending on your security and transport requirements.
It could just be a coincidence, but I ran across this message board posting where somebody suggests that Microsoft name their product “Windows Identity Foundation”. However, this was three years ago! It’s nice that somebody followed up recently with a little “congratulations on your suggestion” posting, but I wonder if the original poster even realizes that his suggestion is now the official name for the identity framework that Microsoft just released.
I will go ahead and throw out that Microsoft should rename its ORM solution from Entity Framework to Windows Data Access Foundation (WDAF). You heard it here first!
Less than two weeks after the release of the Windows Identity Foundation (WIF) RC, the final RTM version has been pushed out!
Still no word on any new releases for Active Directory FS v2 (Geneva Server).
The release candidate (RC) for Windows Identity Foundation (formerly the Geneva Framework) is now available for download.
The latest release has several new features and fixes:
- Refactored WSTrustClient as WSTrustChannelFactory and WSTrustChannel
- Extended tracing functionality for better diagnosibility
- Unifying SAML end points through WrappedTokenAuthenticator
- Crypto agility
- Bootstrap tokens availability through ClaimsIdentity
- Security token cache updates to support session mode for ASP.NET cookies
- FedUtil leveraged for control-based applications
The full list of changes between Beta 2 and the RC is available in a whitepaper.
To go along with this new update, there are also new versions of the Identity Training Kit, the FabrikamShipping example application, and the Claims-Driven Modifier Control (which is really nice if you haven’t tried it out).
There is no word on any new versions of Active Directory FS (Geneva Server) and no update on the final release date, but the word is that they are still shooting for RTM this quarter.