SalesBuy
1-855-856-7678
Technical SupportSupport
Free Trial
*Internet Service Required
SSO using Windows Live ID
SSO using Windows Live ID
-
Thursday, April 05, 2012 2:42 PM
Hi,
I am developing a app which uses windows live id for authentication...i can authenticate using the windows live id...but i can only get the UID of the live-ID...
In my app the admin will give the access rights to the user by his Live-ID...but i am not getting his live id, even though he sign in using his email id...
I don't want to re-authenticate by getting his mail id and forward a mail to him and verify...is there any way to ask the user to provide more information(just the live id) about the user?
really sso with windows live id is frustrating...i can understand, it will be a security issue...but we should have a option to ask some more info about the user like Facebook connect...
The user is going to log in only-if he trust my site then y Microsoft is hiding his mail id from me???
bin hex
- Moved by SDL Team Monday, April 09, 2012 9:48 PM (From:Microsoft Security Development Lifecycle (SDL))
- Moved by JOshiro Monday, April 23, 2012 11:34 PM This question is about Azure, not Live Connect -- duplicate to http://social.msdn.microsoft.com/Forums/en-US/windowsazuresecurity/thread/3a83dcde-ec65-4824-bcb4-9c0f9a35257f (From:Live Connect)
All Replies
-
Wednesday, April 11, 2012 8:34 PM
What specifically do you mean by "mail id" -- are you talking about the user's CID, or their email address?
If you aren't getting the signed-in user's email address, which scopes are you requesting?
-
Thursday, April 12, 2012 6:44 AM
JOshiro,
I need user's email-id (example@live.com)...Instead of getting that i am getting the unique hash id which is mapped to my ACS namespace...
bin hex
-
Tuesday, April 17, 2012 10:53 PM
It sounds like you're talking about the signed-in user's contacts' email addresses, not the signed-in user's own email addresses. The user's contacts' email addresses are not going to be available.
If you aren't getting the signed-in user's own email address, are you requesting the wl.emails scope?
-
Thursday, April 19, 2012 9:14 AM
JOshiro,
I need the signed-in users own email id...but i am not getting it...I am not using any scope... I am just utilizing the Windows Live-ID SSO in Azure ACS...
bin hex
-
Thursday, April 19, 2012 4:27 PM
Hi Bin Hex, if you aren't using Live Connect we aren't going to be able to address your issue further here. Live Connect will allow you to see the signed-in user's email address (assuming you ask for the wl.emails scope).
Live ID SSO in Azure ACS will not allow you to see the user's email address -- it looks like you already asked this question in the Azure forum and were told that Live ID SSO in Azure ACS only provides the UID.
-
Friday, April 20, 2012 2:35 PM
Hi JOshiro,
Ya...its not available in Azure ACS...but why Microsoft limited its default feature in Azure?..i thought it wont be available in Live-ID SSO also...
bin hex
-
Tuesday, April 24, 2012 4:26 PM It's not provided for privacy reasons. The trust relationship is between LiveID and ACS, not between LiveID and your app. Therefore the privacy "contract" is between LiveID and ACS so LiveID won't allow ACS to pass on any identifiable information. IF you want that information you need to go directly to LiveID to get it.
Developer Security MVP | www.syfuhs.net
- Marked As Answer by Bin Hex Wednesday, April 25, 2012 6:33 AM
|
