Comments on: Silverlight, WCF, Membership, Forms Authentication and Windows Live ID

By: Don Rule

Don Rule — Sat, 08 May 2010 22:43:23 +0000

This is an excellent post but after implementing it I realized that it is not really authentication. You know that the user has authenticated with SOME Windows Live ID but what is returned in the ID is just a number that represents the user and the service. Without know WHAT ID was authenticated it really usable for authentication. I wish that I had realized this before I started…

Have you considered doing a post on Delegated Authentication?

Thanks,
Don Rule

By: hdub

hdub — Tue, 09 Feb 2010 05:51:09 +0000

Thank you!

By: Chris

Chris — Wed, 16 Sep 2009 21:05:47 +0000

Great post!

Do you have any guidance on how to detect when a token is about to expire, and how to redirect them to the LiveID site from within SL?

By: Verzeichnis-Autorisierung für LiveID-User ohne lokale Benutzerverwaltung | Coded Style

Mon, 25 May 2009 14:44:10 +0000

[...] Das Originalprojekt ist von dieser Seite http://blog.webjak.net/2008/08/13/silverlight-windows-live-id/, schöne [...]

By: Der Evangelist mit dem Hut : Verzeichnis-Autorisierung für LiveID-User ohne lokale Benutzerverwaltung

Mon, 25 May 2009 13:48:35 +0000

[...] Das Originalprojekt ist von dieser Seite http://blog.webjak.net/2008/08/13/silverlight-windows-live-id/, schöne Anleitung. tweetmeme_url = [...]

By: Jordan

Jordan — Thu, 12 Mar 2009 22:41:20 +0000

Hey Alex,

I only gave a brief overview of the WCF Authentication Service in this article… for some other sweet stuff you can do with it check here: http://msdn.microsoft.com/en-us/library/bb386582.aspx. You could do all your authentication from Silverlight without a single page refresh (well maybe not with Windows Live ID). The aim of this post is to give an overview of how to do lots of stuff in a short time:)

Getting the email from Windows Live ID is a differnt story to authentication – this requires extra permissions from the user(you can also get their contacts etc)… Check out Delegated Authentication here: http://msdn.microsoft.com/en-us/library/cc287637.aspx

The aim here is not to get an email address (after all they could just type it rather than go through all that login stuff). Instead we are using WLID to look after authentication so we don’t have to store passwords and users don’t have to create *yet* another account on your site.

By: Alex

Alex — Thu, 12 Mar 2009 21:21:00 +0000

What I don’t get from this post is this – why do you need WCF here at all? You can do all that in plain ASP.NET. When you bring SL control to the page you just pass it a token. Done. Besides, this sample doesn’t show the most crucial part – how to get actual Live ID (that is email address itself) and not just a token in Silverlight.

By: Evangelising Silverlight « Developer Flotsam

Evangelising Silverlight « Developer Flotsam — Wed, 11 Feb 2009 05:30:29 +0000

[...] See this post for an example of how to integrate Silverlight with ASP.NET Forms Authentication, Custom Membership, WCF and even Windows Live ID (Screencast of same post here). [...]

By: Jordan

Jordan — Mon, 19 Jan 2009 22:37:25 +0000

Thanks Michael… fixed – but not tested on the new version of the SDK

By: Michael S. Scherotter

Michael S. Scherotter — Mon, 19 Jan 2009 16:30:48 +0000

The download link for the Windows Live ID Web Authentication SDK is broken.