Upload
barrett-horn
View
40
Download
1
Tags:
Embed Size (px)
DESCRIPTION
Claims Based Authentication and Windows Identity Foundation. ASP.NET -> HTTPContext.Current.User Thread.CurrentPrincipal. Thread.CurrentPrincipal.IsInRole (“Admin”);. SOAP. WS-Security. OpenID. OAuth. WS-*. SAML. WS-Trust. WS-Federation. W3C. OASIS. - PowerPoint PPT Presentation
Citation preview
ASP.NET -> HTTPContext.Current.User
Thread.CurrentPrincipal
Thread.CurrentPrincipal.IsInRole(“Admin”);
Every request meant to be processed by ASP.NET goes through:
aspnet_isapi.dll (ISAPI extension) in IIS 6.0 or IIS 7.0 classic mode
Managed pipeline in IIS 7.0
HttpRuntime
HttpContext
HttpApplication
Keeps track of how Request-serving process is progressing
Performs the actual Request-serving
Application_Start
Events
BeginRequest
AuthenticateRequest
EndRequest
and many more…
Pipeline of HttpModules
Handling session state
Forums Authentication
etc…
Request processing and application life cycle
IHttpModule
Signing out from multiple RPswa=wsignoutcleanup1.0
<img src=“https://relyingParty1.com/?wa=wsignoutcleanup1.0”/>
Relying Party Site 1
Relying Party Site 2
Relying Party Site 3