asp.net - Share ADFS/WIF federated claims cookie on multiple virtual applications (but the same domain) -
i'm trying (re)use adfs 2/wif claims based authentication cookies multiple different applications running on same domain.
so have these applications/virtual directories reuse same authentication cookie:
in portal, i'd include (client side authenticated) content myapp, don't want every app authenticated separately redirect sts/adfs.
i thought pretty straightforward both access same cookie reside on same domain, cookie valid application created in (fedauth , fedauth1 cookie paths restricted "/portal/")
when set 'path' in cookiehandler settings "/", exception:
[securitytokenexception: id4291: security token 'system.identitymodel.tokens.sessionsecuritytoken' not scoped current endpoint.] system.identitymodel.tokens.sessionsecuritytokenhandler.validatetoken(sessionsecuritytoken token, string endpointid) +1008632 system.identitymodel.services.sessionauthenticationmodule.validatesessiontoken(sessionsecuritytoken sessionsecuritytoken) +351 system.identitymodel.services.sessionauthenticationmodule.setprincipalfromsessiontoken(sessionsecuritytoken sessionsecuritytoken) +91 system.identitymodel.services.sessionauthenticationmodule.authenticatesessionsecuritytoken(sessionsecuritytoken sessiontoken, boolean writecookie) +66 system.identitymodel.services.sessionauthenticationmodule.onauthenticaterequest(object sender, eventargs eventargs) +929 system.web.synceventexecutionstep.system.web.httpapplication.iexecutionstep.execute() +80 system.web.httpapplication.executestep(iexecutionstep step, boolean& completedsynchronously) +165 i've tried use microsoft.owin.security.wsfederation beta packages mentioned in article alternative, no success getting running: http://blogs.msdn.com/b/webdev/archive/2014/02/21/using-claims-in-your-web-app-is-easier-with-the-new-owin-security-components.aspx
before i'm going try override methods in sessionsecuritytokenhandler, possible i'm trying achieve?
thanks in advance!
change cookiehandler below in system.identitymodel.services --> federationconfiguration
<federatedauthentication> <cookiehandler requiressl="true" path="/" /> </federatedauthentication>
Comments
Post a Comment