Domů Knihovna Školení a certifikace Download Podpora/Začínáme Komunita Fóra
Microsoft Developer Network >
SSO using Windows Live ID

Answered SSO using Windows Live ID

  • 5. dubna 2012 14:43
     
     
    Přihlásit se a hlasovat
    0

    Hi,

       I am developing a app which uses windows live id for authentication...i can authenticate using the windows live id...but i can only get the UID of the live-ID...

      In my app the admin will give the access rights to the user by his Live-ID...but i am not getting his live id, even though he sign in using his email id...

      I don't want to re-authenticate by getting his mail id and forward a mail to him and verify...is there any way to ask the user to provide more information(just the live id) about the user?

      really sso with windows live id is frustrating...i can understand, it will be a security issue...but we should have a option to ask some more info about the user like Facebook connect...

      The user is going to log in only-if he trust my site then y Microsoft is hiding his mail id from me???

    bin hex

     

Všechny reakce

  • 5. dubna 2012 18:30
     
     
    Přihlásit se a hlasovat
    0
    ACS does not currently support getting more than a unique identifier from LiveID for privacy reasons.
     
  • 6. dubna 2012 3:06
    Moderátor
     
     
    Přihlásit se a hlasovat
    0

    Hi,

    You can also try to post your idea as a feature request to Microsoft voting site:

    http://www.mygreatwindowsazureidea.com/forums/34192-windows-azure-feature-voting

    Hope this helps.

    Please mark the replies as answers if they help or unmark if not. If you have any feedback about my replies, please contact msdnmg@microsoft.com Microsoft One Code Framework

     
  • 6. dubna 2012 6:34
     
     Odpovědět
    Přihlásit se a hlasovat
    1

    Hi Bin Hex,

    The goal of ACS (and federated authentication) is not to provide 'profile information', but to provide an authentication infrastructure. When a user gets to your application, you can trust ACS (and Windows Live) that this is the person they claim to be. It's true that you can have other claims (like age, ...) but the goal here is to use this in the context of authentication / authorization (maybe only people +18 have access to your site).

    Now, a common practice to ask for their information. The user will log in through Windows Live, he will arrive on your site and you'll detect that  for his ID (the 'encrypted' key you get from Windows Live) you don't have a profile in your database. Then, before the user can continue, the user will need to enter his information (like name, email, address, ...).

    To see a working example (with code), take a look at BlobShare: http://blobshare.codeplex.com/

    Sandrino


    Sandrino Di Mattia | Twitter: http://twitter.com/sandrinodm | Azure Blog: http://fabriccontroller.net/blog | Blog: http://sandrinodimattia.net/blog

    • Označen jako odpověď Bin Hex 6. dubna 2012 7:08
    • Zrušeno označení jako odpověď Bin Hex 6. dubna 2012 7:23
    • Označen jako odpověď Bin Hex 13. dubna 2012 12:34
    •  
     
  • 6. dubna 2012 7:10
     
     
    Přihlásit se a hlasovat
    0

    Hi Sandrino,

             The Blobshare example gives me an idea...Thank you sandrino...

    bin hex

     
  • 13. dubna 2012 9:24
    Moderátor
     
     
    Přihlásit se a hlasovat
    0
    Do you still have any other question?

    Please mark the replies as answers if they help or unmark if not. If you have any feedback about my replies, please contact msdnmg@microsoft.com Microsoft One Code Framework

     
© 2013 Microsoft. Všechna práva vyhrazena.
|
Podněty pro web