For authentication purposes we will be using OpenID providers, we will not store username and passwords internally.
The easiest way to get FB and google authentication is to use ACS.
spdev101
We will be storing details of users in our own custom DB once users are authenticated.
Implement a ClaimsAuthenticationManager to augment the claims provided from ACS. You can then load additional claims from a local database for the current ClaimsPrincipal.
spdev101
Authenticated users will have different permission levels.
Implement a ClaimsAuthorizationManager to implement your authorization checks. Use ClaimsPrincipalPermission or the helpers in
Thinktecture.IdentityModel to perform access checks.
spdev101
I dont want to use ACS since we have to pay for it, would I have to write a custom STS?
spdev101
0 Points
23 Posts
How to use WIF in my Web App
Dec 20, 2012 03:12 AM|LINK
I am writing a custom ASP.NET MVC application. I need to know how to use WIF to handle security. This is my current scenario
I dont want to use ACS since we have to pay for it, would I have to write a custom STS?
BrockAllen
All-Star
28084 Points
4997 Posts
MVP
Re: How to use WIF in my Web App
Dec 20, 2012 12:19 PM|LINK
The easiest way to get FB and google authentication is to use ACS.
Implement a ClaimsAuthenticationManager to augment the claims provided from ACS. You can then load additional claims from a local database for the current ClaimsPrincipal.
Implement a ClaimsAuthorizationManager to implement your authorization checks. Use ClaimsPrincipalPermission or the helpers in Thinktecture.IdentityModel to perform access checks.
ACS is now free.
DevelopMentor | http://www.develop.com
thinktecture | http://www.thinktecture.com/