stackoom
  简体   繁体   中英

Share Authentication between MVC applications through WIF

 原文  2015-06-10 07:26:23       c#/ asp.net/ asp.net-mvc/ wif/ claims-based-identity

Question

I have two website ie A and B, where A and B both have their user store separately. If user is authenticated user of A, it should be able to access all authorized pages of B and visa versa.

Can someone help me how i can do this using Windows identity foundation. Thanks

1 answers

solution1
 5 ACCPTED  2015-06-10 08:22:46

Read the main article by MSDN which completely describes What is Windows Identity Foundation that says:

Windows® Identity Foundation (WIF) is a framework for building identity-aware applications. The framework abstracts the WS-Trust and WS-Federation protocols and presents developers with APIs for building security token services and claims-aware applications. Applications can use WIF to process tokens issued from security token services and make identity-based decisions at the web application or web service.

So you should have the less problems for authentication across multiple applications.

A great start point would be the MSDN one which is How To: Build Claims-Aware ASP.NET MVC Web Application Using WIF

To understand How it works see this helpful MSDN blog .

Another example of WIF + MVC is available in Federated Identity with Multiple Partners where I exhort you to read the first chapters to understand all underlying principles.

Update : Around STS According to MSDN :

A security token service (STS) is the service component that builds, signs, and issues security tokens according to the WS-Trust and WS-Federation protocols. There's a lot of work that goes into implementing these protocols, but WIF does all of this work for you, making it feasible for someone who isn't an expert in the protocols to get an STS up and running with very little effort. You can use a cloud STS such as a LiveID STS, a pre-built STS such as Active Directory® Federation Services (AD FS) 2.0, or, if you want to issue custom tokens or provide custom authentication or authorization, you can build your own custom STS using WIF. WIF makes it easy to build your own STS. For more information, see Building an STS.

The following Links can be helpful around STS:

  1. Building an STS
  2. How to: Create a Security Token Service
  3. Building A Custom Security Token Service

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Authentication between mvc and webapi (Separate domains/Applications) Username/passwd authentication in ADFS through WIF ASP.NET MVC - Same authentication between two applications Shared authentication based on Identity Server 4 between MVC and SPA applications Multiple .NET Applications Share Authentication Share code between office applications Centralize Authentication Code Between Applications How to share Entity Framework between two applications? Share Authentication tokens between ASP.NET Core MVC and Angular4 app DataProtection - Share machine key between multiple applications
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM