Alex Chub


Hello!

How i can to integrate windows live id authentication with web application wrote on asp.net 2.0.

*also using basic authentication system (such as membership, roles etc.) in case it relevant

Thanks!




Re: ASP.NET 2.0 intergration

DeadlyViper


I think you're going to have to wait for the release of the Live ID SDK. I don't know if this will support Web Apps in the first instance though, it appears like it's Smart Client apps only. My bet is: not any time soon.

But of course we need Microsoft to give us more solid information, which is being a little thin on the ground right now!

Cheers,

Paul






Re: ASP.NET 2.0 intergration

Josh Brown - MSFT

Currently, we only support authentication through Windows Forms applications via the Client SDK. We are aware of the demand for web application authentication and are investigating. If you could provide more detail about the scenarios you envision, it would be greatly appreciated. Stay tuned for future announcements.

Thanks,







Re: ASP.NET 2.0 intergration

Aleksey777

Josh, can you tell us what exactly you are investigating here Internet has been around for some time now. The scenario is not that complicated - users need to log in...



Re: ASP.NET 2.0 intergration

Josh Brown - MSFT

I appreciate your patience and your sense of humor. I wish I could give you a definitive answer at this time, but I cannot. I can tell you that we are aware of the great demand for this feature and are researching all possibilities. Part of this research is getting feedback from potential customers. Feedback that includes detailed usage scenarios is most helpful to us in scoping the functionality of any features we consider for release. If you have a specific scenario you are hoping to implement, please share the details of this scenario and I can promise you it will be considered as part of our planning process. I share your enthusiasm and interest in this feature and hope to be able to offer a more definitive answer for you soon. Stay tuned!




Re: ASP.NET 2.0 intergration

thebeebs

I don't really want an SDK all I need is web service, so that i could pass over username and password and be returned whether they are valid or not. Prehaps it could return their GUID or something to.

You could do it similar to Google APIs where they give you a Developer Key that you pass to the web service so that Microsoft can log and prevent abuse of the system such as brute forcing.

That way i could let users either log on via Registering with me or by using there hotmail username and password, thus increasing the chances of people using registering with my website.

I remember passport doing something like this but you were redirected to another site, which is silly really since website owners should be trusted with passing the username and password securly. I mean visa and MasterCard are perfectly happy for website owners to be middlemen in financial transactions it seems strange that they are not trusted to be the middle men in liveID validation.

 





Re: ASP.NET 2.0 intergration

Amadrias

Hi Josh,

So you want some scenarios Here is the one I would like to see in the future...

I have a social networking web application that extends some P2P features through a desktop application. I would like to be able to use LiveId either in my desktop application, either in my web application and manage session length.

This seems quite common but there is a small difference in the desktop application:

It actually embeds a Browser control that renders the web application mentioned earlier which means that I would need to share the auth session between the two applications at the same time just as if it was just one application for the end user.

If I'm unclear, feel free to ask any specific question.

Regards,

Amadrias





Re: ASP.NET 2.0 intergration

Josh Brown - MSFT

For your desktop application that embeds a browser control, you should be able to use the Client SDK. Have you downloaded it yet If not, here's the URL:

http://connect.microsoft.com/site/sitehome.aspx SiteID=347

Let me know if this doesn't address your needs.

Thanks,






Re: ASP.NET 2.0 intergration

Josh Brown - MSFT

Thanks for your input and suggestions. I will make sure they get due consideration.




Re: ASP.NET 2.0 intergration

Amadrias

Hi Josh,

I made some trials with the Client SDK and it seems that I can use the built in authentication forms with it.

However, with this solution, I just get one side of the requirement answered. My scenario has one other major requirement that is not yet answered and another that may even not be considered by the Live team:

1. The Client SDK provides me a way to log in using Live Id for my desktop application but parts of the features I want to implement are website based and also accessible through the use of a web application. Until you release the Web ASP.Net library, I won't be able to implement it.

2. Branding: I do believe the Windows Live Id brand brings trust to the application (even if you place a "Not developed by Microsoft" sentence). But I would have liked to get more branding capabilities on the dialog. It's definitivelly too much Microsoft branded and I dislike providing another design to my end users because it confuses the end user on which application he is.

Thanks anyway for the help. I'm actually also looking at using Open Id or Cardspace with my own STS running. If I like one of these, I will have to choose between popularity (Windows Live Id) and usability.

Regards,

Amadrias





Re: ASP.NET 2.0 intergration

DankoGreiner

It would be great (dream land) if every user would have to register only once on Internet. (let's say it's LiveID)

Then every web site could use this authentication for users, users wouldn't be nagged to regiseter on every site separtly, developers would not need to develop their own authentication.

In my mind this service would require:

input : username, password

output: username, isAuthenticated

I must say having a SmartClient support is great, but i think web implementation is the point!

Like you login only once for microsoft web services, and you keep that login information through multiple microsoft services.

And those servces, i hope, are not a single application, and they share single authentication point, right





Re: ASP.NET 2.0 intergration

Javier

I fully agree that it is esential to have a web service for webmasters, for logging into Custom Domains Windows Live Accounts.



Re: ASP.NET 2.0 intergration

thebeebs

Google have a thing called the google account, you can intgrate there autentication into your own application. But to be honest in the UK regular people don't have gmail accounts they have hotmail accounts and i'd like to integrate a authetication system that people will actually use.



Re: ASP.NET 2.0 intergration

-Q

For the folks at MSFT, here are some market requirements and competitive study links (hey, I thought the PMs are supposed to do this and not the customers) :

http://developer.yahoo.com/auth/

http://code.google.com/apis/accounts/AuthForWebApps.html

And it will be even better if you provide HTTPS post option or a WS to ensure smooth UE without the redirects over multiple pages. Partner site should be able to do LiveID SSO as MSN sites are capable of today.






Re: ASP.NET 2.0 intergration

Josh Brown - MSFT

Alex, you may be interested in the announcement I just posted:

Windows Live ID Web Authentication Preview Release!