Tag: Security

Blocking all external access and securing Azure Functions

(06 Jan 2018)

If you’re developing a solution with micro services architecture with Azure, there are chances you’ve been using Azure Functions to develop a service. For example, If you’re solution can involving sending email alerts. One of the microservices here can be Email Service. This can further be broken down into two micro services. One to enqueue mail message to Azure storage queue. This can be a Http Triggered function. Second one can be a Queue trigerred function that prcesses these messages and actually sends the email, using a third party API.

Read More

What is Relying Party (RP)

(21 Sep 2010)

An application that accepts tokens from an
STS is called as a Relying Party (or RP). In modern scenarios, web applications use WIF and accept tokens from an STS to manage authentications process.

Read More

What are Claims

(21 Sep 2010)

The security tokens generated by
STS contain various attributes based on which a grant/deny access is provided or based on which user experience is customized. These attributes are called as Claims.

Read More

What is Security Token Service (STS)

(21 Sep 2010)

Traditionally, access control was implemented within the main application by writing a code against user’s credentials to authenticate them and based on their attributes grant/deny access to various resources. This required application developers to be skilled in implementing security and writing a code which is hard to implement and maintain.

Read More

What is Passive Federation

(15 Sep 2010)

When i started working with ACS on Appfabric I kept on encountering various terminologies, one of them was Passive Federation and it was widely used. I could understand the term Federation but passive was not clear to me ever.

Read More