The Microsoft Web Browser Federated Sign-On Protocol is primarily a restriction of the protocol specified in [WSFedPRP]. The restrictions are designed to enable greater interoperability by reducing the number of variations that must be implemented. This document specifies minor additions to [WSFedPRP] to handle common scenarios. This protocol is designed to enable the communication of a requestor's identity and attributes for the purpose of enabling access to a protected HTTP web application or its resources.
Sections 1.8, 2, and 3 of this specification are normative and can contain the terms MAY, SHOULD, MUST, MUST NOT, and SHOULD NOT as defined in RFC 2119. Sections 1.5 and 1.9 are also normative but cannot contain those terms. All other sections and examples in this specification are informative.