Reputation: 1174
ADSF Secured Web Application Calling Web Services
I have Active Directory Federation Services 2.0 all setup and ready to work, but I have a scenario that falls outside pretty much everything I've read on enabling a relying party application. The 2 scenarios that are well documented involve A) Passive authentication for a web site or B) Using a thick client that's authenticated for calling web services.
My scenario is as follows: I have a web application that calls WCF services via Net.TCP for data access. I need to use ADFS 2.0 to secure each WCF call with a secure token.
I also can't use use the passive method of authenticating with ADFS from the web site (security restrictions outside my control).
So my question is, is it possible to manually request a secure token from ADFS via a web site, then use that same token to call my WFC service methods?
Upvotes: 1
Views: 987
Answers (1)
Reputation: 3956
Have a look at http://travisspencer.com/blog/2009/03/caching-tokens-to-avoid-calls.html. In this blog post it is described how to cache security tokens for wcf service calls.
I think it should also be possible to "inject" an already fetched token in the described "CacheSecurityTokenProvider".
Upvotes: 1
Related Questions
- Authentication to ASP.NET Web Api using ADFS
- Configure WIF for AD FS with forms authentication
- AD FS and forms Authentication
- Securing backend WCF service with WIF using ADFS2 as IP
- How to secure WCF web service using ADFS in .NET 4.5?
- Passive web application calling a WCF service
- Securing a Web API with Windows Server 2012 R2 ADFS 3.0 and Katana
- consuming wcf service secured by adfs in windows phone application
- Using WIF against different ADFS services
- Authentication with ADFS 2.0