Using ADFS 2.0 with Non .NET Services

Question

Using ADFS 2.0 with Non .NET Services

I am considering ways to combine multiple Windows web services based on single sign-on. Microsoft Windows Identity Framework and ADFS 2.0 are ideal tools for working, except that not all of our web services are written in .NET. One of them is classic ASP and another PHP. Are there existing libraries that will work for these platforms, or will I need to create them from scratch?

+6

php wif asp-classic windows-services adfs

Brad G. Jan 30 '10 at 0:13

source share

2 answers

Using the IIS 7.0 pipeline, you can write an http module that will handle authentication for all sites hosted on iis. (including classic asp and php).

See: MSDN Article

+1

Development 4.0 May 13, '10 at 20:26

source share

Travis spencer · Accepted Answer · 2010-01-31T05:39:45+0000

There are two ways to do this, that I can think of my head:

Find a product that will be hosted on your web server that intercepts calls, refuses unverified users in IdP, analyzes the responses, and places the data in the request header, which it then passes to your ASP / PHP application. There are many types of products, for example, Shibboleth SP, Ping Identity and OpenSSO. I think Centrify DirectControl and Quest's Single Sign-on can also provide that.
Create a comparable component yourself that can do such things and use frameworks to help analyze SAML and / or WS-Federation messages. If you take this route check out SimpleSAMLphp and OIOSAML.NET.

NTN!

Using ADFS 2.0 with Non .NET Services

More articles: