{"id":391,"date":"2010-09-03T00:26:00","date_gmt":"2010-09-03T09:26:00","guid":{"rendered":"http:\/\/www.cloudidentity.com\/blog\/2010\/09\/03\/the-table-of-content-of-programming-windows-identity-foundation\/"},"modified":"2010-09-03T00:26:00","modified_gmt":"2010-09-03T09:26:00","slug":"the-table-of-content-of-programming-windows-identity-foundation","status":"publish","type":"post","link":"https:\/\/www.cloudidentity.com\/blog\/2010\/09\/03\/the-table-of-content-of-programming-windows-identity-foundation\/","title":{"rendered":"The Table of Content of Programming Windows Identity Foundation"},"content":{"rendered":"

\"\"<\/a>\"\"<\/p>\n

Various readers asked me to provide the table of content of Programming Windows Identity Foundation<\/a>, so here it is. The formatting is not perfect, but I wanted to make sure to keep the page numbers and indentation so that you can assess how much space has been dedicated to any given topic you want to study.<\/p>\n

I won\u2019t repeat here what I wrote in the book intro (available also in this Microsoft Press post<\/a>), but I do want to add a couple of notes.<\/p>\n

1. Although the topics covered by the book are a superset of the ones in the training kit, it\u2019s hard to make comparisons. The book packs information at much<\/em><\/strong> higher density and goes significantly deeper than the kit. Apart from something in Part I there are no step-by-step instructions, as you can expect from a title in the Developer Pro References series. <\/p>\n

2. Apart from the parts explaining protocols and patterns, all the book is firmly anchored in code and gives very concrete guidance on how to implement the topic at hand. The only exception is Chapter 7: that chapter covers topics for which there are no official bits yet, and giving cove would have meant filling pages and pages of custom tactical code which could have become obsolete soon. What you get in chapter 7 is an intro to the topics (for example there are swimlane diagrams for OAuth 2 and similar) which helps you to wrap your head around the issue should you have to cope with it before official solutions arise. The exception to the exception is the part about MVC, where I do provide the code of a very simple and elegant solution (I wasn\u2019t the one coming up with it :-)) which integrates really well with the MVC model.<\/p>\n

And now, without further ado, the TOOOC   \u266a\u266c<\/p>\n

\n

Table of Contents <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Foreword xi <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Acknowledgments xiii <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Introduction xvii <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Part I <\/span><\/span>Windows Identity Foundation for Everybody <\/span><\/b> <\/p>\n

<\/span><\/p>\n

1 <\/span><\/b>Claims-Based Identity 3 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

What Is Claims-Based Identity? 3 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Traditional Approaches to Authentication 4 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Decoupling Applications from the Mechanics of Identity and Access 8 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

WIF Programming Model 15 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

An API for Claims-Based Identity 16 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

WIF\u2019s Essential Behavior 16 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

IClaimsIdentity<\/span><\/i><\/b><\/span> <\/span><\/i><\/b>and IClaimsPrincipal<\/i><\/span> <\/i>18 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Summary 21 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

2 <\/span><\/b>Core ASP<\/span><\/b>.NET Programming 23 <\/b> <\/p>\n

<\/span><\/p>\n

Externalizing Authentication 24 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

WIF Basic Anatomy: What You Get Out of the Box 24 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Our First Example: Outsourcing Web Site Authentication to an STS 25 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Authorization and Customization 33 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

ASP<\/span><\/b>.NET Roles and Authorization Compatibility 36 <\/b> <\/p>\n

<\/span><\/p>\n

Claims and Customization 37 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

A First Look at <microsoft.<\/span>identityModel<\/span>> <\/i>39 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Basic Claims-Based Authorization 41 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Summary 46 <\/p>\n

<\/span><\/b><\/p>\n

Part II <\/span><\/span>Windows Identity Foundation for Identity Developers <\/span><\/b> <\/p>\n

<\/span><\/p>\n

3 <\/span><\/b>WIF Processing Pipeline in ASP<\/span><\/b>.NET 51<\/b> <\/p>\n

<\/span><\/p>\n

Using Windows Identity Foundation 52<\/span><\/b> <\/p>\n

<\/span><\/p>\n

WS-Federation: Protocol, Tokens, Metadata <\/span><\/b>.54<\/b> <\/p>\n

<\/span><\/p>\n

WS-Federation 55<\/span><\/b> <\/p>\n

<\/span><\/p>\n

The Web Browser Sign-in Flow 57<\/span><\/b> <\/p>\n

<\/span><\/p>\n

A Closer Look to Security Tokens 62<\/span><\/b> <\/p>\n

<\/span><\/p>\n

Metadata Documents 69<\/span><\/b> <\/p>\n

<\/span><\/p>\n

How WIF Implements WS-Federation 72<\/span><\/b> <\/p>\n

<\/span><\/p>\n

The WIF Sign-in Flow <\/span><\/b>.74<\/b> <\/p>\n

<\/span><\/p>\n

WIF Configuration and Main Classes 82<\/span><\/b> <\/p>\n

<\/span><\/p>\n

A Second Look at <microsoft.<\/span>identityModel<\/span>> <\/i><\/span><\/b>.82<\/b> <\/p>\n

<\/span><\/p>\n

Notable Classes 90<\/span><\/b> <\/p>\n

<\/span><\/p>\n

Summary 94 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

4 <\/span><\/b>Advanced ASP<\/span><\/b>.NET Programming <\/b>.95<\/b> <\/p>\n

<\/span><\/p>\n

More About<\/span> Externalizing Authentication 96<\/span><\/b> <\/p>\n

<\/span><\/p>\n

Identity Providers <\/span><\/b>……………………………………..97<\/b> <\/p>\n

<\/span><\/p>\n

Federation Providers <\/span><\/b>.99<\/b> <\/p>\n

<\/span><\/p>\n

The WIF STS Template <\/span><\/b>.102<\/b> <\/p>\n

<\/span><\/p>\n

Single Sign-on, Single Sign-out, and Sessions 112<\/span><\/b> <\/p>\n

<\/span><\/p>\n

Single Sign-on <\/span><\/b>……………………………………….113<\/b> <\/p>\n

<\/span><\/p>\n

Single Sign-out <\/span><\/b>.115<\/b> <\/p>\n

<\/span><\/p>\n

More About<\/span> Sessions <\/span><\/b>.122<\/b> <\/p>\n

<\/span><\/p>\n

Federation <\/span><\/b>.126<\/b> <\/p>\n

<\/span><\/p>\n

Transforming Claims 129<\/span><\/b> <\/p>\n

<\/span><\/p>\n

Pass-Through Claims 134<\/span><\/b> <\/p>\n

<\/span><\/p>\n

Modifying Claims and Injecting New Claims 135<\/span><\/b> <\/p>\n

<\/span><\/p>\n

Home Realm Discovery <\/span><\/b>.135<\/b> <\/p>\n

<\/span><\/p>\n

Step-up Authentication, Multiple Credential Types, and Similar Scenarios <\/span><\/b>.140 <\/p>\n

<\/b><\/span><\/p>\n

Claims Processing at the RP 141 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Authorization 142 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Authentication and Claims Processing 142 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Summary 143 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

5 <\/span><\/b>WIF and WCF 145 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

The Basics 146 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Passive vs.<\/span>Active<\/span> 146 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Canonical Scenario 154 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Custom TokenHandlers<\/span> 163 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Object Model and Activation 167 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Client-Side Features 170 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Delegation and Trusted Subsystems 170 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Taking Control of Token Requests 179 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Summary 184 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

6 <\/span><\/b>WIF and Windows Azure 185 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

The Basics 186 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Packages and Config<\/span> Files 187 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

The WIF Runtime Assembly and Windows Azure <\/span><\/b>…………….188 <\/b> <\/p>\n

<\/span><\/p>\n

Windows Azure and X<\/span><\/b>.509 Certificates 188 <\/b> <\/p>\n

<\/span><\/p>\n

Web Roles 190 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Sessions 191 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Endpoint Identity and Trust Management 192 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

WCF Roles 195 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Service Metadata 195 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Sessions 196 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Tracing and Diagnostics 201 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

WIF and ACS 204 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Custom STS in the Cloud 205 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Dynamic Metadata Generation 205 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

RP Management 213 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Summary 213 <\/p>\n

<\/span><\/b><\/p>\n

7 <\/span><\/b>The Road Ahead<\/span> <\/span><\/b>.<\/span>215<\/span><\/b> <\/p>\n

<\/span><\/p>\n

New Scenarios and Technologies 215<\/span><\/b> <\/p>\n

<\/span><\/p>\n

ASP<\/span><\/b>.<\/span>NET MVC 216<\/span><\/b> <\/p>\n

<\/span><\/p>\n

Silverlight <\/span><\/b>.<\/span>223<\/span><\/b> <\/p>\n

<\/span><\/p>\n

SAML Protocol 229<\/span><\/b> <\/p>\n

<\/span><\/p>\n

Web Identities and REST <\/span><\/b>.<\/span>230<\/span><\/b> <\/p>\n

<\/span><\/p>\n

Conclusion <\/span><\/b>.<\/span>239 <\/span><\/b> <\/p>\n

<\/span><\/p>\n

Index 241<\/span><\/b><\/p>\n<\/p><\/div>\n

<\/div>\n","protected":false},"excerpt":{"rendered":"

Various readers asked me to provide the table of content of Programming Windows Identity Foundation, so here it is. The formatting is not perfect, but I wanted to make sure to keep the page numbers and indentation so that you can assess how much space has been dedicated to any given topic you…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"footnotes":""},"categories":[29,9,5,4],"tags":[],"class_list":["post-391","post","type-post","status-publish","format-standard","hentry","category-book","category-identity","category-wif","category-windows-identity-foundation"],"_links":{"self":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts\/391","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/comments?post=391"}],"version-history":[{"count":0,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts\/391\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/media?parent=391"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/categories?post=391"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/tags?post=391"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}