WCF (REST) Service With Live ID, Facebook, Google, Yahoo!, Open ID

Back to [[Windows Azure Active Directory Solutions For Developers]] 

Scenario

In this scenario you are developing a rich client  application that consumes RESTful WCF service. You need to integrate Internet Identity Providers (IdP's) such as Live ID, Facebook, Google, Yahoo! and Open ID 2.0 identity providers for authentication purposes.

• Rich client application with WCF (REST) service as its back end.
• Internet Identity Providers (IdP's) such as Live ID, Facebook, Google, Yahoo!, Open ID 2.0

Solution Approach

Use Web Browser control and ACS used to solve this scenario.  

• Rich client application hosts Web Browser control that displayes IdP's and also perform actual sign in dance resulting in receiving SWT token from ACS upon successful authentication.
• The SWT token handed to the rich client application from the hosted WebBrowser control.
• The SWT token sent to the WCF (REST) service.
• The WCF (REST) service validates and parses the token.

Analysis

Internet Identity providers are optimized for web applications vs. web services. This is the reason why WebBrowser control is used in this scenario to accomplish the redirects required for sign in process.

How To's

• How To: Authenticate to a REST WCF Service Deployed to Windows Azure Using ACS
• How To: Configure Google as an Identity Provider
• How To: Configure Facebook as an Identity Provider
• How To: Configure Yahoo! as an Identity Provider

Code Samples

• Code Sample: Windows Phone 7 Application (similar approach but not exactly the same)

Resources

• Windows Phone 7 Application With Federated Authentication
• WPF Application With Federated Authentication, Identities Managed By Live ID, Facebook, Google, Yahoo!, Open ID