I am developing a app which uses windows live id for authentication...i can authenticate using the windows live id...but i can only get the UID of the live-ID...
In my app the admin will give the access rights to the user by his Live-ID...but i am not getting his live id, even though he sign in using his email id...
I don't want to re-authenticate by getting his mail id and forward a mail to him and verify...is there any way to ask the user to provide more information(just the live id) about the user?
really sso with windows live id is frustrating...i can understand, it will be a security issue...but we should have a option to ask some more info about the user like Facebook connect...
The user is going to log in only-if he trust my site then y Microsoft is hiding his mail id from me???
Moved bySDL TeamMonday, April 09, 2012 9:48 PM (From:Microsoft Security Development Lifecycle (SDL))
Moved byJOshiroMonday, April 23, 2012 11:34 PMThis question is about Azure, not Live Connect -- duplicate to http://social.msdn.microsoft.com/Forums/en-US/windowsazuresecurity/thread/3a83dcde-ec65-4824-bcb4-9c0f9a35257f (From:Live Connect)
Hi Bin Hex, if you aren't using Live Connect we aren't going to be able to address your issue further here. Live Connect will allow you to see the signed-in user's email address (assuming you ask for the wl.emails scope).
It's not provided for privacy reasons. The trust relationship is between LiveID and ACS, not between LiveID and your app. Therefore the privacy "contract" is between LiveID and ACS so LiveID won't allow ACS to pass on any identifiable information. IF you
want that information you need to go directly to LiveID to get it.