Category Archives: WIF

WIF SAML token POST and requestValidationMode=”2.0″

Just a quick note on the WIF SAML token POST and problems like this (you’ve probably had these problems too, if working with WIF and .NET 4.0): (see e.g. Why am I getting the “A potentially dangerous Request.Form value was … Continue reading

Posted in .NET, C#, WIF | 5 Comments

Encrypt your WIF claims

WIF claims are per definition safe from tampering, as they are signed, and you do use SSL, don’t you? However, there might be times when you don’t want even the end user to be able to read the contents of … Continue reading

Posted in .NET, C#, WIF | 6 Comments

MVC AntiForgeryToken and WIF gotcha

We are in the process of implementing a Windows Identity Foundation based login. And in this process, we had some problems with an MVC site. The AntiForgeryTokens were suddenly invalid. We got the following error on every postback in our … Continue reading

Posted in .NET, C#, MVC, WIF | 4 Comments

X509Certificate2Collection is picky…

Just a quickpost. I noticed the other day, experimenting with WIF, that the X509 Certificate Store is extremely picky on the Distinguished name when trying to locate a certificate in the certificate store. My certificate’s Distinguished name shows in the … Continue reading

Posted in .NET, C#, WIF | Leave a comment

Windows Identity Foundation and date formats

I am starting preparation for a WIF-based security solution, and when playing with the STS that is created when you click “Add STS reference”, and “Add new STS project” in Visual Studio, I came across a curious thing. I was … Continue reading

Posted in .NET, C#, Uncategorized, WIF | Tagged , | 1 Comment