Posted in Uncategorized, tagged concurrency, IIS, WCF on August 14, 2008 | Leave a Comment »
Recommending the post “WCF Request Throttling and Server Scalability“.
It contains important information regarding WCF’s asynchronous processing when hosting on IIS. For example, I was unaware that
So in the release of .Net 3.0 and 3.5, WCF implemented synchronous versions of HTTP module and handler instead of asynchronous ones
meaning that even with asynchronous service implementation (asyncpattern=true), a [...]
Posted in Uncategorized, tagged claims, WCF, Zermatt on August 14, 2008 | 1 Comment »
In the last post, I briefly presented Zermatt’s claims model. This model can be used in both WCF based services or ASP.NET based web applications.
Beginning with this post, I will describe how this new claims model is integrated into WCF, using WCF’s extensibility points, and also what are some consequences of this integration.
Once again, keep [...]
Posted in Uncategorized, tagged claims, identity, Zermatt on August 8, 2008 | 2 Comments »
In the last couple of posts, I’ve written about the claims and security token concepts, and also about how WCF models them:
What are claims?
Claims and claims sets in WCF
What are security tokens?
Security tokens in WCF
Authorization policies in WCF: from tokens to claim sets
The ServiceAuthorizationManager class in WCF
In this post I will start writing about how [...]
Posted in Uncategorized on August 6, 2008 | 2 Comments »
In the last post, I described the purpose of the IAuthorizationPolicy interface and the related policy evaluation process. In this post I will briefly described the classes involved in this process and how it can be customized.
The ServiceHostBase class contains the Authorization property, of type ServiceAuthorizationBehavior. This is the place where most of the authorization [...]
Posted in Uncategorized, tagged claims, identity, WCF on August 5, 2008 | 1 Comment »
In a previous post, I presented some classes for handling security tokens in WCF. This post describes the process that begins with the authentication of a token and ends with a collection of claim sets, available at the AuthorizationContext (see this previous post).
One of the classes referred in the last post is the SecurityTokenAuthenticator class, [...]
Posted in Uncategorized, tagged claims, identity, WCF on August 4, 2008 | 1 Comment »
In WCF, security tokens are represented by classes derived from the SecurityToken abstract class. However, this class exposes little functionality:
A SecurityKeys property, to access the keys associated with this token.
Two properties, ValidFrom and ValidTo, with the token’s validity period.
A couple of methods for creating and matching key identifiers.
Most of the functionality related to security tokens [...]
Posted in Uncategorized, tagged claims, identity on August 2, 2008 | 1 Comment »
In the Identity Metasystem, claims are produced by issuers and consumed by relying parties (named service providers on other models). A security token is the data structure that holds the claims during the communication between these two parties. However, a security token is more that a mere container of claims. Typically, it contains the metadata [...]
Posted in Uncategorized, tagged claims, identity, WCF on August 1, 2008 | 2 Comments »
How are claims represented in WCF?
As described in an earlier post, the Identity Metasystem proposes a model where identities are defined by claim sets.
The WCF platform adopts this view and provides a claims-based authentication model, mostly defined in the System.IdentityModel.dll assembly, introduced with .NET 3.0.
In both the Identity Metasystem and the WS-* specifications, the claim [...]
