W3C home > Mailing lists > Public > public-xg-webid@w3.org > January 2012

RE: public site up for a day or two, to demo logon using a webid to a windows azure webapp.

From: Peter Williams <home_pw@msn.com>
Date: Wed, 4 Jan 2012 03:16:01 -0800
Message-ID: <SNT143-W580951E70583FB58C0922D92970@phx.gbl>
To: <j.jakobitsch@semantic-web.at>
CC: "public-xg-webid@w3.org" <public-xg-webid@w3.org>

I have another site instance Im making, as a security demo, involving SSL with non rooted server cert, webid profile in windows blob store (with rooted server cert), and webid-cert signing a SAML2 assertion and claim set (that is then encrypted using messaging security). Presumably, once all the pieces are all in place, the secure/insecure handoffs with redireects and the mixed content warnings will go away. We will see. I'd give that a day or two. I gave up being a programmer a decade ago...being out of date THEN. > Date: Wed, 4 Jan 2012 11:57:51 +0100
> From: j.jakobitsch@semantic-web.at
> To: home_pw@msn.com
> CC: public-xg-webid@w3.org
> Subject: Re: public site up for a day or two, to demo logon using a webid to a  windows azure webapp.
> hi,
> cool, i can log in without hassle using my webid and the openid link.
> i have attached a screenshot from a security-warning message. 
> is this some to worry about?
> wkr http://www.turnguard.com/turnguard
> ----- Original Message -----
> From: "Peter Williams" <home_pw@msn.com>
> To: public-xg-webid@w3.org
> Sent: Wednesday, January 4, 2012 11:42:21 AM
> Subject: public site up for a day or two, to demo logon using a webid to a  windows azure webapp.
> I made a webid profile in turtle, and hosted it (finally) in a trivial windows website build, then hosted in Azure cloud. I just borrowed the typical About verb in MVC for the home page controller. http://idweb.cloudapp.net/Home/About#me . 
> I then made a second website, http://idweb.cloudapp.net:8080/ that uses the OpenLink IDP (using 2 bridges, Azure STS and OpenLink openid/webid proxy). It features a home realm selector rather similar to that Melvin showed. Using my own webid and cert made using microsoft windows bearing a single SAN URI, it not only works agains all three test sites (FOAFSSL, FCNS, ODS), it also works via the openid proxy. It should do, being so simple (for which we should give Henry some praise, occasionally, for staying on course). 
> One knows that the client certs part works, when ODS IDP dialogs say something like (for me). 
> WebID: http://idweb.cloudapp.net/Home/About#me 
> OpenID Identity: http://id.myopenlink.net/openid-proxy/id.vsp?w=http://idweb.cloudapp.net/Home/About%23me 
> I do occasionally see Aazure/ODS interworking issues, that folks will no doubt fix as customer starting paying... 
> None of the code is mine. I just hooked things together... All the code is either Microsoft sample code for their websso cloud endpoints and repling party demo sites, or Kingsley's team's work on the IDP side. Its largely identical to the kind of site that webmasters now using webmatrix (a low end website builder, for the windows community) are given, so one can easily talk to facebook, and openid enabled IDPs like Yahoo, Google (and now webid). 
> I dont know its its required, but I have an IDP account at ODS, that is also webid enabled. The IDP allowed me to also registered my third-party cert, and bind it to the IDP account. This MAY be required (for the openid proxy to work). Im not sure. Im just happy I could make it work by myself, without an OpenLink engineer doing anything for me! 
> Now, this costs 4c an hour to run. So, I can afford it for a a day or two (since that fits the kinds of costs we have to get things down to, to turn a profit in the IT business of realty. Folks are unlike to pay more than 10-20c a month per user for webid, since they only paid a bit more for an RSA securid card with full power 2 factor assurances, and a major brand in support). 
> -- 
> | Jürgen Jakobitsch, 
> | Software Developer
> | Semantic Web Company GmbH
> | Mariahilfer Straße 70 / Neubaugasse 1, Top 8
> | A - 1070 Wien, Austria
> | Mob +43 676 62 12 710 | Fax +43.1.402 12 35 - 22
> | http://www.semantic-web.at/
> | web   : http://www.turnguard.com
> | foaf  : http://www.turnguard.com/turnguard
> | skype : jakobitsch-punkt
Received on Wednesday, 4 January 2012 11:16:30 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 19:39:54 UTC