Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

WSFederationAuthenticationModule v/s SessionAuthenticationModule

Tags:

asp.net

wif

According to documentation, both module will used to create instance of IClaimsPrincipal. I am not understanding why WIF bother to use 2 HttpModules instead of one? Sorry, I am new in WIF

like image 713
Imran Qadir Baksh - Baloch Avatar asked Jun 25 '26 03:06

Imran Qadir Baksh - Baloch

1 Answers

The big difference is that the WSFederationAuthenticationModule intercepts requests and will redirect the user to be authenticated by the STS while the SessionAuthenticationModule uses the WIF-token cookie to authorize the user on subsequent requests.

The SessionAuthenticationModule fires first in the pipeline so if you already have a session cookie (i.e., you've already been authenticated), the session module will grant you access.

The MSDN documentation does a decent job of describing this.

like image 84
Garrett Vlieger Avatar answered Jun 26 '26 21:06

Garrett Vlieger
Sign in to Comment

Related questions

How do you globalise the ASP.Net forms authentication longinUrl for multiple languages?
Load-time initialization for hidden controls
Asp.NET Login Control: Dealing with brackets in passwords
How to add description to a user control property in vb.net
CRTL+V (Paste) function automatic formatting in JavaScript asp.net
How to get line number in multi-line textbox using Javascript
Only Display Certain List Object Properties in GridView

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!