Programming Windows Identity Foundation (Anglais) Broché – 15 septembre 2010
- Choisissez parmi 17 000 points de collecte en France
- Les membres du programme Amazon Premium bénéficient de livraison gratuites illimitées
- Trouvez votre point de collecte et ajoutez-le à votre carnet d’adresses
- Sélectionnez cette adresse lors de votre commande
Les clients ayant acheté cet article ont également acheté
Descriptions du produit
Présentation de l'éditeur
Get hands-on guidance designed to help you put the newest .NET Framework component- Windows Identity Foundation, the identity and access logic for all on-premises and cloud development- to work.
Biographie de l'auteur
Vittorio Bertocciis a Senior Architect Evangelist in DPE and a key member of the extended engineering team that produces Microsoft's claims-based platform components (e.g. Windows Identity Foundation, ADFS 2.0). He is responsible for identity evangelism for the .NET developers community and drove initiatives such as the Identity Developer Training Kit and the IdElement show on Channel 9.
He is co-author of Understanding Windows Cardspace (Addison-Wesley, 2008) and a prominent authority/blogger on Azure, "Geneva" (the code name for Windows Identity Foundation), .NET development, and related topics.
Aucun appareil Kindle n'est requis. Téléchargez l'une des applis Kindle gratuites et commencez à lire les livres Kindle sur votre smartphone, tablette ou ordinateur.
Pour obtenir l'appli gratuite, saisissez votre numéro de téléphone mobile.
Détails sur le produit
Si vous vendez ce produit, souhaitez-vous suggérer des mises à jour par l'intermédiaire du support vendeur ?
Commentaires en ligne
Meilleurs commentaires des clients
Commentaires client les plus utiles sur Amazon.com (beta)
The book starts very well. First 2 chapters provides a good introduction into both WIF and the principles of claims based identity. Author describes why claim base identity is important and what kind of problems it tries to solve. I especially liked the comparison between evolution of computer drivers and identity solutions. The problem is that the book didn't keep the pace it set.
Next 4 chapters explain WIF usage in 3 different technologies ASP.NET, WCF and Azure. All chapters contain some theory with very short snippets of actual code. Useful theory is scattered to these 4 chapters without some general coherency. The book doesn't have some governing idea where each chapter should start, how much theory it should explain and in which order it should do. In the end of day I had to go back and forward, to re-read what I had already read to remind the details. Another problem is the lack of source code. Even though the book is marked as a WIF book, there is very little of WIF code. WIF classes are not presented in systematic way, just (like theory) scattered here and there. The last thing to mention is sample code. There isn't. Just a reference to official WIF samples.
While all these issues, Programming WIF is still useful. Author is undoubtedly an expert to WIF. With better organization and more systematic approach to WIF itself this could have been a great book. But on 240 pages it's simply not possible. The book should have been at least 2 times bigger than it actually is.
The last remark. WIF has changed several times (now it's an integral part of .NET framework) but while configuration has changed significantly (which made me a lot of headaches), WIF classes are very similar to those ones presented in the book. So with little effort you can easily find their counterparts to .NET 4.5..
Here are some additional details that I hope will be helpful to anyone considering this book:
1) Claims based identity is an important enabling technology that .NET developers and designer need to understand well. And this is not just case, if you are an ASP.NET or WCF developer. Claims-based identity is important even if you are SharePoint, BI or Azure developer.
2) This book is broken up into two parts. The first part explains the basics of claims based identity. Second part is more advanced and gets into the nuts and bolts of WIF.
3) Don't skip over the ASP.NET chapters (2, 3 & 4 ) just because you are not going to use WIF inside ASP.NET. These aforementioned chapters cover a number of important concepts ( such as single-sign-on, claims transformation, federation) that you will need to understand when using WIF outside of ASP.NET (say with WCF).
4) Being involved with the WIF team for a long time, Vittorio is able to provide important context around how some of the features have evolved, design decisions etc.
5) Last but not the least, it is hard to write a book on security. Fortunately, Vittorio has managed to write it in a conversational, unassuming style that makes it easy to read. Wherever needed, he provides a just in time, overview of protocols ( WS-Trust, WS-Federation and so on) without getting mired in the details associated with these, rather arcane, specifications.
I was looking for some code samples and reasonable quick-start type guides to at least get a proof of concept up and running, but there is no sort of cohesion to the book that makes it possible. The first part labors on about federated identity and fundamentals, which is fine to an extent. However, it just keeps going on with theory... again, which is fine if you want to sit and read a book to learn about federated security.
A preferred approach, and the one followed by most good technical books, is to start with a basic example and explain the theory behind it in small chunks.
I was surprised by how frustrating this book is based on the other reviews, so maybe I'm missing something everyone else is getting. But, if you're looking for a reasonable quick start to WIF with meat to back up the code, this probably isn't a good fit for you.
This is the Lost Windows Identity Foundation Documentation.
It's great from a reference and from a how-to standpoint, including plenty of diagrams and code snippets that help to explain how different scenarios work and how those scenarios specifically apply to WIF.
I was working on a custom passive STS using WIF and found it nearly impossible to do without this book. Once I had it, there was more in it than I was even hoping for - explanations of how to handle sliding token expiration, for example, which is pretty much nowhere to be found out on the web.
It's also been really handy in helping to explain complex federation issues to my team, who are not nearly as neck-deep in this stuff as I am. After we got the first copy of this, we actually ended up getting a second because it's so useful and people sort of "hog it" and forget to return it to the library.
The only thing that's missing in my opinion is how to work with WIF in an ASP.NET MVC environment. WIF was written primarily with web forms in mind, so all of the code samples and scenarios described in this book revolve around web forms. It's sort of an unmentioned "exercise for the reader" to get things working with MVC. That's more a fault with WIF than the book, though, hence I am not docking a star for missing it.
If you use WIF, you owe it to yourself to pick up a copy of this book.