{"id":620,"date":"2007-06-01T02:07:00","date_gmt":"2007-06-01T11:07:00","guid":{"rendered":"http:\/\/www.cloudidentity.com\/blog\/2007\/06\/02\/understanding-ws-federation\/"},"modified":"2013-03-15T18:11:39","modified_gmt":"2013-03-16T03:11:39","slug":"understanding-ws-federation","status":"publish","type":"post","link":"https:\/\/www.cloudidentity.com\/blog\/2007\/06\/01\/understanding-ws-federation\/","title":{"rendered":"Understanding WS-Federation"},"content":{"rendered":"<p><P>While WS-Trust provides the primitives for playing the token issuing game, WS-Federation builds on those capabilities and enables to describe the behavior of complex scenarios. Microsoft and IBM recently published a joint whitepaper, titled <A href=\"http:\/\/msdn2.microsoft.com\/en-us\/library\/bb498017.aspx\">Understanding WS-Federation<\/A>, which gives exhaustive descriptions of the specification in action on various notable situations. Namely, the paper really goes in fine details of how WS-Federation handles sing in and resource access management in two fairly realistic scenarios, about enterprise and healtcare (I suspect Roberto is behind&nbsp;the latter&nbsp;:-)). Both the passive and active case are considered. Besides fulfilling its obvious purpose of explaining how WS-Federation work, the paper is a great way of stimulate your thinking about the nuances that emerge in&nbsp;canonical (yet realistic)&nbsp;federation scenarios.<\/P><br \/>\n<P><A href=\"http:\/\/identity-des.com\/\">Don<\/A>&nbsp;announces the paper and give&nbsp;some background <A href=\"http:\/\/identity-des.com\/2007\/05\/31\/understanding-ws-federation\/\">here<\/A>. Suggested reading! \ud83d\ude42&nbsp;<\/P><br \/>\n<P>P.S.: I SO need to find a good synonym for &#8220;scenario&#8221;.<\/P><\/p>\n","protected":false},"excerpt":{"rendered":"<p>While WS-Trust provides the primitives for playing the token issuing game, WS-Federation builds on those capabilities and enables to describe the behavior of complex scenarios. Microsoft and IBM recently published a joint whitepaper, titled Understanding WS-Federation, which gives exhaustive descriptions of the specification in action on various notable situations. Namely, the paper really&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"footnotes":""},"categories":[61,9],"tags":[],"class_list":["post-620","post","type-post","status-publish","format-standard","hentry","category-architecture-ws","category-identity"],"_links":{"self":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts\/620","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/comments?post=620"}],"version-history":[{"count":1,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts\/620\/revisions"}],"predecessor-version":[{"id":1771,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts\/620\/revisions\/1771"}],"wp:attachment":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/media?parent=620"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/categories?post=620"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/tags?post=620"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}