Information about identity provider is missing

Hot Topic

How do you declare eventhandlers outside of compiled code?
Reusage of Rules Engine Components
Windows SDK for Vista RTM won't install on RC1
How to get(set) cursor position in my service before logon?
Suggestion for Samples
lower integrity level for named pipe
XPS and Javascript
Rehydrating instances persisted in previous execution
ExternalDataEventArgs NullReferenceException
Consistent set of components

Windows Vista

Pageflow
SequenceActivity inheritance
Dynamic URL's for invoke webservice activity
VNC and Session 0 Isolation
FASTOEM=1
Access a Canvas's ScaleTransform ScaleX property via Script?
Imaging Tool
Truly Dynamic Runtime Activity Property Nirvana
Auditing / non-auditing IP ?
XOML compilation

Information about identity provider is missing

Hi

I Tell my Customers about CardSpace and then they ask me how to build an identity provider, What are the best practices for the STS etc... and I Do not know

I found a lot of information about using the cards but None (Theory) about creating them and about building the STS for CardSpace cards. I asked in the forum but nothing !!! Is it a secret
I need more than samples I need the theory.
Thanks for your help
manu


Answer this question

Information about identity provider is missing

  • djshades2004

    Hi

    I have looked at all the examples in netfx.com :
    1. They don't really work
    2. They are not written for a real world scenario
    3. I am looking for the theory behind the code.

    The documentation there is only describing how to install the examples nothing more.

    Thanks anyway

    manu

  • mruniqueid

    Additionnal info I've used :
    http://www.nds.ruhr-uni-bochum.de/gajek/papers/OpGaHa07%20CardSpaceSecurity.pdf
    http://download.microsoft.com/download/5/4/0/54091e0b-464c-4961-a934-d47f91b66228/infocard-techref-beta2-published.pdf

  • osamaT

    You can find tools and documentation for creating managed cards here: http://cardspace.netfx3.com/files/folders/samples_rc_1/entry5996.aspx

    Tools and documentation regarding the STS you can find here: http://cardspace.netfx3.com/files/folders/samples_rc_1/entry6082.aspx

    When downloading the zipfiles, a "Documentation" folder is always included. Don't expect all things to work directly though, I still didn't managed to setup a decent configuration with managed cards with username/password authentication, and with smartcard authentication after experimenting with managed cards and STS for more than 6 months.

    Let's hope and wait until Ping Identity releases their Java based STS code, and hope it will work better out of the box than the one Microsoft has supplyed us.

    regards

  • usamaalam

    Hi

    I would love to read your work

    please send it to: manu@sela.co.il

    thanks

    manu

  • Larry3228

    If you want another implementation of a STS, I encourage you to test Sergey Shishkin's STS implementation (based on Microsoft's one) :
    http://staff.newtelligence.com/sergeys/ADC2006CardSpaceSample.aspx (link named "here").

    It's great, you also have a web site which allows you to get an infocard (so you have a web-based interface, not a comand-line executable).

  • Michael C. Neel

    I'm writing a thesis about this stuff, I can email you a draft version.
    Don't expect working samples from me though ;)
  • Information about identity provider is missing
Answer this question