Configure Claim based identity for multiple applications in localhost - McMap

About

Configure Claim based identity for multiple applications in localhost

Asked 19/7, 2013 at 6:7 Answered 19/7, 2013 at 12:45

Solved asp.net-mvc web-config wif claims-based-identity federated-identity

L

1

1

I have two applications "http:/localhost/applicationA" and "http:/localhost/applicationB". I have configured applicationA for claim based authentication settings. applicationA is working perfectly. But I am refering some javascrips of applicationB from applicationA. But applicationB has no the authentication cookies(FedAuth).

Is it possible for me to add claim authentication in both applicationA, applicationB using the below code?

<system.identityModel>
<identityConfiguration>
  <audienceUris>
    <add value="http://localhost/applicationB/" />
    <add value="http://localhost/applicationA/" />
  </audienceUris>
  <issuerNameRegistry type="System.IdentityModel.Tokens.ValidatingIssuerNameRegistry, System.IdentityModel.Tokens.ValidatingIssuerNameRegistry">
    <authority name="PassiveSigninSTS">
      <keys>
        <add thumbprint="DE161DD37B2FEC37BDB17CAFF33D982DCE47E740" />
      </keys>
      <validIssuers>
        <add name="PassiveSigninSTS" />
      </validIssuers>
    </authority>
  </issuerNameRegistry>
  <!--certificationValidationMode set to "None" by the the Identity and Access Tool for Visual Studio. For development purposes.-->
  <certificateValidation certificateValidationMode="None" />
</identityConfiguration>

enter image description here

Lontson answered 19/7, 2013 at 6:7 Comment(0)

M

5

You would need to enable claims authentication in applicationB for this to work. In other words, you would need to setup the same system.identityModel web.config settings in applicationB as in applicationA (as you've shown in your example).

Is there a reason that the JavaScript needs to be secured? If the scripts aren't secured, why not just make them accessible to everyone so you won't need to worry about the single sign-on across sites?

Milkwort answered 19/7, 2013 at 12:45 Comment(6)

Thank you for your valid informations. About the script I have added the scripts on a folder inside localhost/Scripts. Then this scripts are not authorised. because I have added the system.identityModel web.config settings in applicationA. So the scripts are not authorised. it shows the 401 error message. not authorised. – Lontson 19/7, 2013 at 13:2

I'm a little unclear. So the scripts are in applicationB, correct? Is this a Web Forms or MVC application? Do the scripts need to be secured? If not, you can allow anonymous access to the scripts so there won't be a problem. – Milkwort 19/7, 2013 at 13:17

No. scripts are in "localhost/Scripts" The applications are localhost/applicationA and localhost/applicationB........... Then scripts have error message as 401. Because I have configured only in localhost/applicationA. – Lontson 19/7, 2013 at 13:25

So it sounds like you would need to do as I suggested: you would need to add the system.identityModel configuration information into the web.config for the other application. – Milkwort 19/7, 2013 at 13:51

Thank you so much. But how can I make a webrequest from applicationA toapplicationB. while I make the request, I got the response as login page to the STS server. applicationB always redirect to the STS server for token. No reuse of token here. – Lontson 22/7, 2013 at 5:58

@GarrettVlieger did anyone of you resolve the problem of the last comment? I have the same issue, please if you can provide any samples of the config files it will be helpful. I have two applications(A and B), A takes the token from the STS and when the user is authenticated I want to redirect that user with the token to the website B. – Ashton 12/5, 2015 at 13:37

Recommended topics

#Godot #Unity #Godot 4.X #Mongodb

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

© 2022 - 2024 — McMap. All rights reserved.