{"id":537,"date":"2008-07-09T13:58:00","date_gmt":"2008-07-09T22:58:00","guid":{"rendered":"http:\/\/www.cloudidentity.com\/blog\/2008\/07\/09\/announcing-the-beta-release-of-zermatt-developer-identity-framework\/"},"modified":"2008-07-09T13:58:00","modified_gmt":"2008-07-09T22:58:00","slug":"announcing-the-beta-release-of-zermatt-developer-identity-framework","status":"publish","type":"post","link":"https:\/\/www.cloudidentity.com\/blog\/2008\/07\/09\/announcing-the-beta-release-of-zermatt-developer-identity-framework\/","title":{"rendered":"Announcing the Beta release of \u201cZermatt\u201d Developer Identity Framework"},"content":{"rendered":"

Ahh, I\u2019ve been looking forward for this post for a looong time. <\/p>\n

We just made available for download the bits of the Beta of \u201cZermatt\u201d Developer Identity Framework<\/a>. \u201cZermatt<\/a>\u201d is the codename of a .NET framework that helps developers build claims-aware applications to address challenging application security requirements using a simplified application access model. <\/p>\n

Let me expand a bit on that. If you want to develop applications that take advantage of claims & identity Metasystem goodness in general, Zermatt<\/a> makes your life easier by providing base classes, controls but especially capabilities & a programming model that take care of most of the plumbing for you. Regardless of the role (IP, RP, subject) or the style (Active, Passive, \u201cPassive-Aggressive<\/a>\u201d), Zermatt<\/a> shields you from the sheer handling of protocols & tokens and provides you with a great model for externalizing your access logic. For my loyal readers and in general to whoever worked with tokens and cardspace in general, who stormed me with mails since the TechEd EMEA demo<\/a> and even earlier: this means that we can finally retire historical samples like the SimpleSTS and the TokenProcessor class<\/a>. Zermatt<\/a> is a fully supported developer framework that gives you those capabilities and MUCH more. How much more? Below there\u2019s a partial list of the goodies you get: <\/p>\n

\n

\u00b7 An HttpModule (the Federated Access Module, or FAM) that takes care of handling the token processing pipeline: fully extensible & web.config-urable, it exposes programmable events for every relevant step in the authentication lifecycle <\/p>\n

\u00b7 A new claim model, which unifies token & principal programming models achieving direct reuse of some classic access control techniques (IsInRole, PrincipalPermission) without requiring a rewrite <\/p>\n

\u00b7 Visual ASP.NET controls which take care of enhancing web pages with capabilities such as: information card signin and one-off information card requests, passive signin, session management and passive STS capabilities. All of those include comprehensive property management a and a rich events model <\/p>\n

\u00b7 Full control of session management: intended audience, pages whitelist, session duration, custom session tickets, etc <\/p>\n

\u00b7 A unified token handling model that works across ASP.NET and WCF applications alike <\/p>\n

\u00b7 Base classes for authoring STS, which handle automatically historically tedious tasks such as RST & RSTR parsing <\/p>\n

\u00b7 Native support for handling information cards: serialization, deserialization, issuance. Integration with the STS programming model for simplifying the development of cardspace-ready STSes <\/p>\n

\u00b7 Delegate authentication. Applications can now request new tokens on behalf of their callers, greatly simplifying three tier architectures and enabling a whole new class of scenarios<\/p>\n<\/blockquote>\n

This is only a partial list. For a more in-depth coverage of Zermatt<\/a> capabilities I invite you to read this excellent paper<\/a> from Keith Brown<\/a>, which introduces you to the basic concepts behind claim based identity management and describes Zermatt<\/a> object model with samples and walkthroughs. <\/p>\n

Needless to say, I\u2019ll blog about this every single time I\u2019ll have a moment. Once I\u2019ll be back from vacation, we\u2019ll also get a surprise guest on channel9 for hearing directly from the engineers who brought us Zermatt. <\/p>\n

Finally, this is the tool that can help developers to experience directly the power of claim-aware applications. I invite you to download Zermatt<\/a> and use it as much as you can: as you know this world is very new, and we\u2019d really like feedback, feedback, feedback. Feedback on what works, what doesn\u2019t, what you\u2019d like to see, what you accomplished with it\u2026 we love every bit \ud83d\ude42 the place for sending us your feedback<\/a> & discussing Zermatt is the forum at this address<\/a>. <\/p>\n

Summary: <\/p>\n

\u00b7 Get Zermatt bits from here<\/a> <\/p>\n

\u00b7 Discuss here<\/a> & give feedback here<\/a> <\/p>\n

\u00b7 Read Keith Brown<\/a> paper about Zermatt here<\/a> <\/p>\n

Congratulations to the Zermatt team for a great beta of a new breed of products! <\/p>\n

And now\u2026 back to the beach \ud83d\ude09 see you in a week! <\/p>\n","protected":false},"excerpt":{"rendered":"

Ahh, I\u2019ve been looking forward for this post for a looong time. We just made available for download the bits of the Beta of \u201cZermatt\u201d Developer Identity Framework. \u201cZermatt\u201d is the codename of a .NET framework that helps developers build claims-aware applications to address challenging application security requirements using a simplified application access…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"footnotes":""},"categories":[61,39,23,9,86,55,31,79],"tags":[],"class_list":["post-537","post","type-post","status-publish","format-standard","hentry","category-architecture-ws","category-cardspace","category-federation","category-identity","category-infocard","category-windows-cardspace","category-windows-communication-foundation","category-zermatt"],"_links":{"self":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts\/537","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/comments?post=537"}],"version-history":[{"count":0,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts\/537\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/media?parent=537"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/categories?post=537"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/tags?post=537"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}