Access Control Service Endpoints

Damir Dobric Posts

Next talks:

 

    

Follow me on Twitter: #ddobric



 

 

Archives

Windows Azure AppFabric Access Control Service v2 provides a number of endpoints which wrap up many authentication, authorization and federation scenarios into a single platform. Stepping through all samples and reading of all specifications is pretty wired task. For this reason I tried to recap most used endpoints across multiple samples and list them all in this post.


ACSv2 Management Endpoint

Use this endpoint to add service reference to application which will perform management operations.

https://itemtracking.accesscontrol.windows.net/v2/mgmt/service/

image

After the proxy has been created you can do this like:


RelyingParty relyingParty = svc.GetRelayingPartyByName(“MyRelayingParty”);

svc.CreateRelyingPartyKey(relyingParty, signingCertificate, "password", RelyingPartyKeyType.X509Certificate, RelyingPartyKeyUsage.Signing, true);

svc.CreateRelyingPartyKey(relyingParty, cerForEncryption, null, RelyingPartyKeyType.X509Certificate, RelyingPartyKeyUsage.Encrypting, true);


svc.CreateServiceIdentity(serviceIdentityName,
Encoding.UTF8.GetBytes(pwd),
ServiceIdentityKeyType.Password,
ServiceIdentityKeyUsage.Password);


RuleGroup ruleGroup = svc.CreateRuleGroup(ruleGroupName);

svc.AssignRuleGroupToRelyingParty(ruleGroup, relyingParty);

Sample: All SDK samples provide a project named “ConfigureSample”.

Username Password Endpoint

Useful in Web Service scenarios, when the consumer needs to authenticate to service by using of SAML token issued by Access Control Service.

https://myacsnamespace.accesscontrol.windows.net/v2/wstrust/13/username

Sample: ACS Sample named “Acs2UsernameBindingSample”

 

WRAPv09 Endpoint

Used for example in federation scenarios to obtain WRAP token issued by LiveID, Google Open ID etc. The federated token is then sent to some Relaying party (i.e. Web Service).

https://myacsnamespace.accesscontrol.windows.net/WRAPv0.9/

Sample: ACS Sample named “Acs2WindowsPhoneSample” and “ASPNetSimpleService”

OAuth Endpoint

By using of this endpoint you can protect your Web Application by using of OAuth.

https://itemtracking.accesscontrol.windows.net/v2/OAuth2-13

Sample: ACS sample named: “OAuth2CertificateSample”

All samples can be downloaded at CodePlex.


Posted May 22 2011, 12:56 PM by Damir Dobric
developers.de is a .Net Community Blog powered by daenet GmbH.