Buy new:
$164.99$164.99
$4.93
delivery:
Feb 2 - 5
Ships from: Philadelphia Book Company Sold by: Philadelphia Book Company
Buy used: $129.99
Download the free Kindle app and start reading Kindle books instantly on your smartphone, tablet, or computer - no Kindle device required.
Read instantly on your browser with Kindle for Web.
Using your mobile phone camera - scan the code below and download the Kindle app.
Follow the author
OK
Programming Windows® Identity Foundation (Dev - Pro) 1st Edition
Purchase options and add-ons
Get hands-on guidance designed to help you put the newest .NET Framework component- Windows Identity Foundation, the identity and access logic for all on-premises and cloud development- to work.
- ISBN-100735627185
- ISBN-13978-0735627185
- Edition1st
- PublisherMicrosoft Press
- Publication dateSeptember 13, 2010
- LanguageEnglish
- Dimensions7.38 x 0.67 x 9 inches
- Print length272 pages
Frequently bought together

Customers who bought this item also bought
Editorial Reviews
About the Author
Vittorio Bertocci is a Senior Architect Evangelist in DPE and a key member of the extended engineering team that produces Microsoft's claims-based platform components (e.g. Windows Identity Foundation, ADFS 2.0). He is responsible for identity evangelism for the .NET developers community and drove initiatives such as the Identity Developer Training Kit and the IdElement show on Channel 9.
He is co-author of Understanding Windows Cardspace (Addison-Wesley, 2008) and a prominent authority/blogger on Azure, "Geneva" (the code name for Windows Identity Foundation), .NET development, and related topics.
Product details
- Publisher : Microsoft Press; 1st edition (September 13, 2010)
- Language : English
- Paperback : 272 pages
- ISBN-10 : 0735627185
- ISBN-13 : 978-0735627185
- Item Weight : 15.6 ounces
- Dimensions : 7.38 x 0.67 x 9 inches
- Best Sellers Rank: #4,110,890 in Books (See Top 100 in Books)
- #1,391 in Microsoft C & C++ Windows Programming
- #4,296 in Computer Programming Languages
- #9,974 in Computer Security & Encryption (Books)
- Customer Reviews:
Important information
To report an issue with this product or seller, click here.
About the author

Vittorio Bertocci is the Principal Architect for Auth0. Before Auth0, Vittorio had a lengthy career with Microsoft, where he worked with Fortune 100 and Global 100 companies, including working on Microsoft’s Azure Active Directory team as principal program manager focusing on the developer experience. He contributed to the inception and launch of Microsoft's claims-based platform components (Windows Identity Foundation and ADFS, ADAL and MSAL SDKs, ASP.NET middleware).
Vittorio blogs at www.cloudidentity.com and tweets as @VIBRONET
Customer reviews
Customer Reviews, including Product Star Ratings help customers to learn more about the product and decide whether it is the right product for them.
To calculate the overall star rating and percentage breakdown by star, we don’t use a simple average. Instead, our system considers things like how recent a review is and if the reviewer bought the item on Amazon. It also analyzed reviews to verify trustworthiness.
Learn more how customers reviews work on Amazon-
Top reviews
Top reviews from the United States
There was a problem filtering reviews right now. Please try again later.
This is the Lost Windows Identity Foundation Documentation.
It's great from a reference and from a how-to standpoint, including plenty of diagrams and code snippets that help to explain how different scenarios work and how those scenarios specifically apply to WIF.
I was working on a custom passive STS using WIF and found it nearly impossible to do without this book. Once I had it, there was more in it than I was even hoping for - explanations of how to handle sliding token expiration, for example, which is pretty much nowhere to be found out on the web.
It's also been really handy in helping to explain complex federation issues to my team, who are not nearly as neck-deep in this stuff as I am. After we got the first copy of this, we actually ended up getting a second because it's so useful and people sort of "hog it" and forget to return it to the library.
The only thing that's missing in my opinion is how to work with WIF in an ASP.NET MVC environment. WIF was written primarily with web forms in mind, so all of the code samples and scenarios described in this book revolve around web forms. It's sort of an unmentioned "exercise for the reader" to get things working with MVC. That's more a fault with WIF than the book, though, hence I am not docking a star for missing it.
If you use WIF, you owe it to yourself to pick up a copy of this book.
1. Browser clients (WS-Federation)
2. WCF clients (WS-Trust)
The only think lacking in this book is demonstrating W.I.F. interop with Java clients. This would have been helpful.
Another excellent source for W.I.F. education is Dominick Baier (Microsoft MVP with focus on security). He has a great blog with lots good W.I.F. tutorials.
I was looking for some code samples and reasonable quick-start type guides to at least get a proof of concept up and running, but there is no sort of cohesion to the book that makes it possible. The first part labors on about federated identity and fundamentals, which is fine to an extent. However, it just keeps going on with theory... again, which is fine if you want to sit and read a book to learn about federated security.
A preferred approach, and the one followed by most good technical books, is to start with a basic example and explain the theory behind it in small chunks.
I was surprised by how frustrating this book is based on the other reviews, so maybe I'm missing something everyone else is getting. But, if you're looking for a reasonable quick start to WIF with meat to back up the code, this probably isn't a good fit for you.
The book starts very well. First 2 chapters provides a good introduction into both WIF and the principles of claims based identity. Author describes why claim base identity is important and what kind of problems it tries to solve. I especially liked the comparison between evolution of computer drivers and identity solutions. The problem is that the book didn't keep the pace it set.
Next 4 chapters explain WIF usage in 3 different technologies ASP.NET, WCF and Azure. All chapters contain some theory with very short snippets of actual code. Useful theory is scattered to these 4 chapters without some general coherency. The book doesn't have some governing idea where each chapter should start, how much theory it should explain and in which order it should do. In the end of day I had to go back and forward, to re-read what I had already read to remind the details. Another problem is the lack of source code. Even though the book is marked as a WIF book, there is very little of WIF code. WIF classes are not presented in systematic way, just (like theory) scattered here and there. The last thing to mention is sample code. There isn't. Just a reference to official WIF samples.
While all these issues, Programming WIF is still useful. Author is undoubtedly an expert to WIF. With better organization and more systematic approach to WIF itself this could have been a great book. But on 240 pages it's simply not possible. The book should have been at least 2 times bigger than it actually is.
The last remark. WIF has changed several times (now it's an integral part of .NET framework) but while configuration has changed significantly (which made me a lot of headaches), WIF classes are very similar to those ones presented in the book. So with little effort you can easily find their counterparts to .NET 4.5..



