Web Sites and IdentityVersion: 1.1.0 DescriptionThe first exercise of the lab describes the most basic form of claims-based authentication for web sites, demonstrating how to take advantage of the integration between Windows Identity Foundation and Visual Studio. If you are interested in authorization, this lesson is for you: you will see how claims allow you to use the traditional ASP.NET role model, or to use sophisticated access rules (such as imposing an age limit to users) via claims. The second exercise you will take a peek inside a custom STS, discovering how claims are issued and how you can back an STS with arbitrary credentials and attributes stores. The third exercise is very short: you will experience firsthand how easy it is to take advantage of existing identity providers for externalizing the authentication logic for your website. How would you like to instantly grow your audience to more than 500 million users? The fourth exercise will show you how you can add Live Id to your list of trusted identity providers The fifth and final exercise of the lab is for expert developers. It shows you how you can avoid trusted subsystems without relying on sophisticated infrastructure. You will learn how to take advantage of Windows Identity Foundation for flowing the identity of your users across application tiers, ensuring that the access privileges are always referring to the actual user access levels. OverviewAuthentication, authorization and identity driven customization are all essential aspects of application development, however mastering secure development techniques is not straightforward and a skill that not every developer will want to invest in. The solution to this problem is simple: we remove from the application code most or all of the identity management logic, leaving the application developer free to focus on the business logic and removing the need to impose everybody to become a security expert. The externalization of the identity management logic is made possible by the use of standard protocols, which can describe the details of the identity transactions we need regardless of the platforms or technologies involved; and by providing for every platform infrastructure components and developer tools, which decouple applications and developers from the low level details of message formats, cryptography and all the other things which are necessary for guaranteeing secure communications. Windows Identity Foundation is one of such tools. Windows Identity Foundation extends Visual Studio and the .NET Framework with advanced identity capabilities, which can be leveraged by any application regardless of the hosting model (ASP.NET pages and WCF services). With Windows Identity Foundation you can:
and much more. This hands-on lab will explore how to take advantage of Windows Identity Foundation for enhancing a classic ASP.NET Web application with advanced identity capabilities. We will see how to accept identities from a number of different sources, and how to use the identity information we will receive for driving the application’s behavior. At the end of the lab you will be able to take your own ASP.NET applications and externalize authentication and authorization code. Identity has never been so easy! ObjectivesIn this Hands-On Lab, you will learn how to:
System RequirementsYou must have the following items to complete this lab:
SetupYou must perform the following steps to prepare your computer for this lab. You must perform the following steps to prepare your computer for this lab.
Note:
In addition to the setup script inside the %YourInstallationFolder%\Labs\WebSitesAndIdentity\Source\Setup folder, there is a Cleanup.cmd file you can use to uninstall all the code snippets installed by the SetupLab.cmd script.
ExercisesThe following exercises make up this Hands-On Lab:
Note:
Each exercise is accompanied by a starting solution. These solutions are missing some code sections that are completed through each exercise and therefore will not work if running them directly.
Inside each exercise you will also find an end folder where you find the resulting solution you should obtain after completing the exercises. You can use this solution as a guide if you need additional help working through the exercises.
Using the Code SnippetsWith code snippets you have all the code you need at your fingertips. The lab document will tell you exactly when you can use them. For example,
(Code Snippet – Web Sites And Identity Lab - Ex01 Default Page Usings) C# To add this code snippet in Visual Studio you simply place the cursor where you'd like the code to be inserted, start typing the snippet name, in this case WebSitesAndIdentityLabEx01DefaultPageUsings, watch as Intellisense picks up the snippet name, and hit the TAB key twice once the snippet you want is selected. The code will be inserted at the cursor location. To insert a code snippet using the mouse rather than the keyboard (i.e. for web.config file and any other XML document), right-click where you want the code snippet to be inserted, select Insert Snippet... then My Code Snippets and then select the relevant snippet. To learn more about Visual Studio IntelliSense Code Snippets, including how to create your own, please see https://msdn.microsoft.com/en-us/library/ms165392.aspx. Estimated time to complete this lab: 50 minutes (90 minutes with the optional exercises) |
DownloadsDownload The Offline Training Kit Contents
|