Identity at Rest

Identity at Rest is a simple sample implementation of Claims based identity applied to a RESTful WCF Web Service. The sample is an end to end service implementation containing projects for:

Contracts
Service Definition
Service Host
Service Consumer (Windows Forms app)
Utilities (contains Identity support)

The service utilized WCF extensibility points to flow an identity token from a REST client to a REST Service, and use the claims contained in the token to make authorization decisions inside the service implementation. A Windows Forms application is provided to allow experimenting with accessing various API methods from the perspective of different users with different authorization characteristics. Below is a screen shot of the sample. Please see the following blog posts for an overview of the problem this project is attempting to solve (http://www.thefreakparade.com/2008/09/flowing-identity-from-a-client-to-a-service-when-using-restful-wcf-part-1-the-problem and the details of the proposed solution (http://www.thefreakparade.com/2008/09/flowing-identity-from-a-client-to-a-service-when-using-restful-wcf-part-2-a-solution). The expression-based authorization and permission management is described in this blog post: http://www.thefreakparade.com/2008/09/rule-based-access-control-using-an-expression-evaluator.

NOTE : THIS SAMPLE REQUIRES .NET 3.5 SP1 **