Geek asks and answers

WIF with multiple STS

Apologies for the terrible image quality, but it shows my scenario of what I am trying to achieve and I wonder what is the best solution for this?

Wif scenario

I have setup a test project using RP for one STS - in which it works fine, RP gets access to STS for approval, and then sends the token back, simply.

However, I want, say, a drop-down list on my RP, that you select "mode", and based on this mode you will be redirected for authorization to one of the STS providers. Obviously, I cannot redirect directly to STS for this, and therefore it must be dynamic, and the web.config settings are removed for instant redirection, which .NET projects automatically place there.

Can anyone give a guide on this?

+3
4

, Windows Azure AppFrabric (ACS). , STS, ACS . , ACS STS, , ( WIF) ACS .

( " " ): http://www.microsoft.com/windowsazure/AppFabric/Overview/default.aspx

+4

. global.asax

void WSFederationAuthenticationModule_RedirectingToIdentityProvider(object sender, RedirectingToIdentityProviderEventArgs e)
{
    string whr = HttpContext.Current.Request.QueryString["whr"]; 
    if (!string.IsNullOrEmpty(whr))
    {
        //add your logic to determine the STS
        e.SignInRequestMessage.HomeRealm = @"http://path-to-STS";
    }
}
+4

ADFS v2.0 . STS, ADFS, "Home Realm Discovery".

AppFabric ACS is essentially ADFS in the cloud, and there is nothing to stop ADFS and ACS federation.

+1
source

Overriding "RedirectingToIdentityProvider" is exactly what I would like to do.

Just by posting this link here, you can find the IdentityFederationSamples collection here if it helps to have a complete solution. There is a pattern for redirecting to one of two STS, there is another one that shows STS binding. http://www.michelelerouxbustamante.com/post/Cloud-Connections-Las-Vegas-Links.aspx

+1
source

More articles:


All Articles