The Microsoft Web Browser Federated Sign-On Protocol is primarily a restriction of the protocol specified in [WSFederation1.2]. The restrictions are designed to enable greater interoperability by reducing the number of variations that must be implemented. This document specifies minor additions to [WSFederation1.2] to handle common scenarios. This protocol is designed to enable the communication of a requestor's identity and attributes for the purpose of enabling access to a protected HTTP web application or its resources.
This protocol is based on the Web Service (WS) Federation Protocol described in [WSFederation] and [WSFederation1.2].
Sections 1.8, 2, and 3 of this specification are normative and can contain the terms MAY, SHOULD, MUST, MUST NOT, and SHOULD NOT as defined in [RFC2119]. Sections 1.5 and 1.9 are also normative but do not contain those terms. All other sections and examples in this specification are informative.