Identity at Rest is a simple sample implementation of Claims based identity applied to a RESTful WCF Web Service. The sample is an end to end service implementation containing projects for:

Service Definition
Service Host
Service Consumer (Windows Forms app)
Utilities (contains Identity support)

The service utilized WCF extensibility points to flow an identity token from a REST client to a REST Service, and use the claims contained in the token to make authorization decisions inside the service implementation. A Windows Forms application is provided to allow experimenting with accessing various API methods from the perspective of different users with different authorization characteristics. Below is a screen shot of the sample. Please see the following blog posts for an overview of the problem this project is attempting to solve ( and the details of the proposed solution ( The expression-based authorization and permission management is described in this blog post:



Last edited Sep 18, 2008 at 6:46 AM by PlasticLIzard, version 5