There's a lot more that's involved in this custom STS stuff, such as certificates, validation, custom RSTs, and even making a dedicated Claims WCF Service to further hide some of the STS stuff from your apps, but they typically are specific to individual needs. Just know that there is a ton of room for further customization. But again, this is all supposed to be a temporary quick-and-dirty STS solution to tide you over, right? You go much further and you might as well write your own dedicated STS application.
There are a lot of really great resources to help you with the concepts I've gone over and more. Here are just a few of the ones I used:
- Microsoft's Patterns & Practices Guide to Claims Based Identity
- A Crash Course in WIF
- Claims Based WPF Guide (and excellent sample source)
- Programming Windows Identity Foundation
- WIF Workshop video series
- Using a SQL Server DB with ADFS2
- WIF SDK (be sure to check the folder it installs to for sample code)
- Identity Developer Training Kit (also has lots of great samples)
- Security Token Visualizer Control (includes Fabrikam Airlines sample)
No comments:
Post a Comment