Windows Azure AppFabric Access Control Service (ACS): REST Web Services And OAuth 2.0 Delegation

Scenario

Following are characteristics of the scenario:

• RESTful web service requires SWT token.
• Credentials validated by the same authority that exposes the RESTful web service.
• RESTful web service is accessed by intermediary and not by the end user.
• Credentials must not be shared with intermediary.

Solution

• Use ACS as an OAuth authorization server.
• Use WIF Extensions for OAuth CTP.

Supporting Materials

• Code Sample: OAuth 2.0 Delegation

Related Resources

• Video: What is ACS? (Slides)
• Video: What ACS Can Do For Me? (slides)
• Video: ACS Functionality (slides)
• Video: ACS Architecture (slides)
• Video: ACS Deployment Scenarios (slides)
• Video: ACS and the Cloud (slides)
• Video: ACS And WIF (slides)
• Video: ACS and ADFS (slides)