{"id":261,"date":"2012-03-15T17:36:00","date_gmt":"2012-03-16T02:36:00","guid":{"rendered":"http:\/\/www.cloudidentity.com\/blog\/2012\/03\/15\/windows-identity-foundation-tools-for-visual-studio-11-part-ii-manipulating-common-wif-settings-from-the-ui-2\/"},"modified":"2012-03-15T17:36:00","modified_gmt":"2012-03-16T02:36:00","slug":"windows-identity-foundation-tools-for-visual-studio-11-part-ii-manipulating-common-wif-settings-from-the-ui-2","status":"publish","type":"post","link":"https:\/\/www.cloudidentity.com\/blog\/2012\/03\/15\/windows-identity-foundation-tools-for-visual-studio-11-part-ii-manipulating-common-wif-settings-from-the-ui-2\/","title":{"rendered":"Windows Identity Foundation Tools for Visual Studio 11 Part II: Manipulating Common WIF Settings From the UI"},"content":{"rendered":"<p>Welcome to the second walkthrough of the <a href=\"http:\/\/bit.ly\/xAJ3Dr\">new WIF tools for Visual Studio 11 Beta<\/a>! This is about using the tools to modify common settings of your app without editing the web.config.<\/p>\n<p> The complete series include <a href=\"http:\/\/bit.ly\/ymqBuv\">Using the Local Development STS<\/a>, <a href=\"http:\/\/bit.ly\/wDXL3J\">manipulating common config settings<\/a>, <a href=\"http:\/\/bit.ly\/zJCt9E\">connecting with a business STS<\/a>, <a href=\"http:\/\/bit.ly\/zN84Iz\">get an F5 experience with ACS2<\/a>.<\/p>\n<ul><\/ul>\n<p>Let\u2019s say that you downloaded the <a href=\"http:\/\/go.microsoft.com\/fwlink\/?LinkID=245849\">new WIF tools<\/a> (well done! <img decoding=\"async\" class=\"wlEmoticon wlEmoticon-smile\" alt=\"Smile\" src=\"http:\/\/cloudidentity.com\/blog\/wp-content\/uploads\/2012\/03\/7215.wlEmoticon_2D00_smile_5F00_5319CE8A.png\" \/>) and you went through the first walkthrough, and you are itching to go deeper in the rabbit\u2019s hole. Pronto, good Sir\/Ma\u2019am!<\/p>\n<p>Let\u2019s go back to the tool and take a look at the Configuration tab. What\u2019s in there, exactly?<\/p>\n<p>In V1 the tools operated in fire &amp; forget fashion: they were a tool for establishing a trust relationship with a WS-Federation or WS-Trust STS, and every time you opened them it was expected that your intention was to create a new relationship (or override (most of) an existing one).<\/p>\n<p>The WIF tools for .NET 4.5 aspire to be something more than that: when you re-open them, you\u2019ll discover that they are aware of your current state and they allow you to tweak some key properties of your RP without having to actually get to the web.config itself.<\/p>\n<p>The main settings you find here are:<\/p>\n<ul>\n<li><strong>Realm and AudienceUri<\/strong>      <br \/>The Realm and AudienceUri are automatically generated assuming local testing, however before shipping your code to staging (or packaging it in a cspack) you\u2019ll likely want to change those values. Those tow fields help you to do just that.<\/li>\n<li><strong>Redirection Strategy<\/strong>      <br \/>For most business app developers WIF\u2019s default strategy of automatically redirecting unauthenticated requests to the trusted authority makes a lot of sense. In business settings it is very likely that the authentication operation will be silent, and the user will experience single sign on (e.g. they type the address of the app the want, next thing they see the app UI).       <br \/>There are however situations in which the authentication experience is not transparent: maybe there is a home realm discovery experience, or there is an actual credentials gathering step. In that case, for certain apps or audiences the user could be disoriented (e.g. they type the address of the app the want, next thing they see the STS UI). In order to handle that, the tool UI offers the possibility of specifying a local page (or controller) which will take care of handling the authentication experience. You can see this in action in the ClaimsAwareMVCApplication sample.<\/li>\n<li><strong>Flags: HTTPS, web farm cookies<\/strong>      <br \/>The HTTPS flag is pretty self-explanatory: by default we don\u2019t enforce HTTPS, given the assumption that we are operating in dev environment; this flag lets you turn the mandatory HTTPS check on.       <br \/>The web far cookie needs a bit of background. In WIF 4.5 we have a new cookie transform based on MachineKey, which you can activate by simply pasting the appropriate snippet in the config. That\u2019s what happens when you check this flag.<\/li>\n<\/ul>\n<p><a href=\"http:\/\/cloudidentity.com\/blog\/wp-content\/uploads\/2012\/03\/3482.image_5F00_72C8A852.png\"><img loading=\"lazy\" decoding=\"async\" style=\"margin: 0px;border: 0px currentcolor\" title=\"image\" border=\"0\" alt=\"image\" src=\"http:\/\/cloudidentity.com\/blog\/wp-content\/uploads\/2012\/03\/3482.image_5F00_72C8A852.png\" width=\"600\" height=\"548\" \/>&#160;<\/a><\/p>\n<p>Those are of course the most basic settings: we picked them because how often we observed people having to change them. Did we get them right? Let us know!<\/p>\n<p>Don\u2019t forget to check out the other walkthroughs: the complete series include <a href=\"http:\/\/bit.ly\/ymqBuv\">Using the Local Development STS<\/a>, <a href=\"http:\/\/bit.ly\/wDXL3J\">manipulating common config settings<\/a>, <a href=\"http:\/\/bit.ly\/zJCt9E\">connecting with a business STS<\/a>, <a href=\"http:\/\/bit.ly\/zN84Iz\">get an F5 experience with ACS2<\/a>.<\/p>\n<div style=\"clear:both\"><\/div>\n","protected":false},"excerpt":{"rendered":"<p>Welcome to the second walkthrough of the new WIF tools for Visual Studio 11 Beta! This is about using the tools to modify common settings of your app without editing the web.config. The complete series include Using the Local Development STS, manipulating common config settings, connecting with a business STS, get an F5&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-261","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts\/261","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/comments?post=261"}],"version-history":[{"count":0,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts\/261\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/media?parent=261"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/categories?post=261"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/tags?post=261"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}