The WSFederationAuthenticationModule (WSFAM) and SessionAuthenticationModule (SAM), as well as classes that support their operation. The WSFAM provides handling for the WS-Federation sign-in and sign-out sequences and the SAM provides session management by maintaining and handling cookies. The namespace also contains classes that represent WS-Federation messages (WSFederationMessage), such as sign-in (SignInRequestMessage, SignInResponseMessage) and sign-out messages (SignOutRequestMessage), as well as serializers that serialize and deserialize between the object model and the on-the-wire representations of these messages.namespace primarily contains classes that are used in applications built using Windows Identity Foundation (WIF) that perform federated authentication with the WS-Federation protocol. It contains the HTTP Modules,
The exception that is thrown when an error occurs during an asynchronous operation.
Represents a WS-Federation Attribute Request message. This message is created when the wa parameter in the received message is “wattr1.0”.
Provides data for the AuthorizationFailed event.
Represents a cookie handler that writes cookie data so that cookies never exceed a set size.
Represents the <chunkedCookieHandler> configuration element.
Represents an HTTP module that performs claims-based authorization.
Represents a permission that uses a ClaimsAuthorizationManager implementation to determine if access to a resource should be granted to the active principal. This class cannot be inherited.
Represents a security attribute used to declaratively assign access checks based on the logic provided by the ClaimsAuthorizationManager instance in the current application context. This class cannot be inherited.
Provides an abstract base class for reading, writing, and deleting session cookies on an HTTP client.
Represents the <cookieHandler> configuration element.
Provides data for the SessionAuthenticationModule.SignOutError event.
Provides access to state pertinent to all HTTP modules relevant to federated authentication in the web application.
Indicates that the sign-in session should being terminated, and the current request is unauthenticated.
A utility class that encapsulates the operations typically performed by a Federated Passive Security Token Service.
The exception that is thrown when a session has expired.
Base class for exceptions raised in WS-Federation support.
Defines static methods for creating Federation Metadata documents and for updating application configuration based on Federation Metadata documents.
Defines the base class from which all federation message classes derive.
Protects session tokens with the cryptographic material specified in the <machineKey> section of the web.config or machine.config configuration file.
Represents a WS-Federation Pseudonym Request message. This message is created when the received message wa parameter is “wpseudo1.0”.
Provides data for the WSFederationAuthenticationModule.RedirectingToIdentityProvider event.
Provides data for the WSFederationAuthenticationModule.SecurityTokenReceived event.
Provides data for the SecurityTokenValidated event.
Represents the <serviceCertificate> element in a configuration file.
Implements an ASP.NET module that processes session cookies in WS-Federation scenarios.
Provides data for the SessionAuthenticationModule.SessionSecurityTokenCreated event and for the WSFederationAuthenticationModule.SessionSecurityTokenCreated event.
Provides data for the SessionAuthenticationModule.SessionSecurityTokenReceived event.
Resolves session security tokens from the current cache.
Provides data for the WSFederationAuthenticationModule.SigningOut event.
Represents a WS-Federation Sign-In Request message.
Represents a WS-Federation Sign-In Response message.
Represents a WS-Federation Sign-Out Cleanup message. The message is created when the received message has the action parameter (wa) set to “wsignoutcleanup1.0”.
Represents a WS-Federation sign-out message. This message is created when the received message has the action parameter (wa) set to “wsignout1.0”.
The WSFederationAuthenticationModule is an HTTP module which is used to secure an ASP.NET application by enforcing federated authentication settings on incoming requests. The WSFederationAuthenticationModule is the main module that WIF offers out of the box for handling claims-based identity access in ASP.NET applications.
The WSFederationAuthenticationModule raises several events, which allows ASP.NET developers to change the default behavior and control the details of how authentication and claims processing take place. The WSFederationAuthenticationModule functionality is divided into task-specific methods.
Represents a WS-Federation message and defines the base class from which more specialized WS-Federation message classes derive.
The exception that is thrown when an error occurs while serializing or deserializing a WS-Federation message.
Specifies the kind of application.