Claims Based Authentication and Windows Identity Foundation
-
Upload
barrett-horn -
Category
Documents
-
view
40 -
download
1
description
Transcript of Claims Based Authentication and Windows Identity Foundation
ASP.NET -> HTTPContext.Current.User
Thread.CurrentPrincipal
Thread.CurrentPrincipal.IsInRole(“Admin”);
Every request meant to be processed by ASP.NET goes through:
aspnet_isapi.dll (ISAPI extension) in IIS 6.0 or IIS 7.0 classic mode
Managed pipeline in IIS 7.0
HttpRuntime
HttpContext
HttpApplication
Keeps track of how Request-serving process is progressing
Performs the actual Request-serving
Application_Start
Events
BeginRequest
AuthenticateRequest
EndRequest
and many more…
Pipeline of HttpModules
Handling session state
Forums Authentication
etc…
Request processing and application life cycle
IHttpModule
Signing out from multiple RPswa=wsignoutcleanup1.0
<img src=“https://relyingParty1.com/?wa=wsignoutcleanup1.0”/>
Relying Party Site 1
Relying Party Site 2
Relying Party Site 3