How to use Twitter as Identity Provider on Access Control Service?
-
terça-feira, 23 de agosto de 2011 10:42
Hello,
OOTB we can define and use LiveID, Google, Yahoo, and Facebook on ACS, if i want to add Twitter to my ACS authentication module, how can i do that?
Regards,
Alen
- Movido Brian AurichMicrosoft Employee quarta-feira, 24 de agosto de 2011 15:24 Authentication related. (From:Windows Azure Platform Development)
Todas as Respostas
-
quarta-feira, 24 de agosto de 2011 06:49 Azure ACS supports OAuth WRAP and OAuth 2.0 but unfortunately Twitter supports OAuth 1.0A only. I'm afraid we cannot configure Twitter as an identity provider in ACS, at least for now.
- Sugerido como Resposta Seetha_ sexta-feira, 26 de agosto de 2011 05:08
- Marcado como Resposta Wenchao ZengModerator quinta-feira, 1 de setembro de 2011 08:43
-
quarta-feira, 24 de agosto de 2011 16:31
@zwc2 is correct. However you could create an OAuth 1 relying party and have it convert the token to OAuth2.
Your RP (signin) -> ACS -> Your custom converter (302 redirect) -> Twitter Auth (get OAuth1) -> Your custom converter (convert oauth1 to oauth2) -> ACS -> Your RP.
Not the most elegant, but it might work.
Developer Security MVP | www.steveonsecurity.com- Marcado como Resposta Wenchao ZengModerator quinta-feira, 1 de setembro de 2011 08:43
-
quarta-feira, 24 de agosto de 2011 17:36
-
quarta-feira, 24 de agosto de 2011 17:48Hmm...
Developer Security MVP | www.steveonsecurity.com -
segunda-feira, 14 de novembro de 2011 08:28+1 for a way to make it work...
-
segunda-feira, 14 de novembro de 2011 17:54
Its important to put up such engineering messes, as a market hits its inflection point and goes commodity. What matters is that nothing stops mass adoption, including endless gateway chains. Noone must feel excluded.
Commoditization will soon remove the chaff. Too much gatewaying defeats the flexibility of the bridging-based open architecture, becoming a unsustainable support cost and fragile user experience.
I have a simple cutoff point for IDPs - based on the number of support calls we receive (as SP). Once it hits X, the IDP is removed. I have no intention of adding Twitter back (even though we ran the gateway). We just cannot afford the cost of supporting users arriving from that channel.
-
segunda-feira, 20 de fevereiro de 2012 16:33
Here's a simple STS for twitter that you can plug into ACS:
https://gist.github.com/1869974
I've also put one up for Windows Live (includes name and email claims, extend as needed):
https://gist.github.com/1867792
Both are built off of the Thinktecture Starter STS (ported to MVC4).
All you really need to do (aside from above) is attach the claims you need in GetOutputClaimsIdentity.
-
terça-feira, 15 de maio de 2012 20:36
-
terça-feira, 26 de fevereiro de 2013 13:47Hi , if you could provide us with a sample application or detail steps on how to plug the above custom twitter STS into ACS that will be really helpful...
-
terça-feira, 26 de fevereiro de 2013 14:23
Hi,
Anyone got the solution to integrate twitter in ACS.
Please let me know if someone resolve or found solution.
Thanks:
Komal Ahirwal
-
terça-feira, 26 de fevereiro de 2013 22:39At this time, the only way to make this work is to add your own custom STS that speaks a protocol ACS understands (such as WS-Federation or OpenID) as an identity provider in between ACS and Twitter. This requires a non-trivial amount of work, but it is certainly possible.
-
terça-feira, 23 de abril de 2013 20:50
Suppose it might be helpful for you: Twitter WS-Federation STS for ACS.
It's ASP.NET MVC app, just change Web.config configuration settings and add it in ACS Management portal as "WS-Federation identity provider". Metadata for it can be reached at /wsfederation/twittermetadata
- Editado Dmitry Tretyakov terça-feira, 23 de abril de 2013 20:51 Fixed link
