ACS v2 Public in AppFabric Labs
Earlier this afternoon we pushed a new version of the AppFabric Access Control Service into our public “Labs” environment.
If you’d like to find out more about the service, feel free to create an account at http://portal.appfabriclabs.com. You can also check out our CodePlex documentation & samples at http://acs.codeplex.com, watch Justin in his Channel9 IdElement interview, or watch the walkthrough screencast.
V2 of the service is a significant upgrade from V1, we’ve moved beyond the simple OAuth WRAP implementation that was all that V1 had to adding support for WS-Federation, WS-Trust and OpenID and, in particular, we’ve opened up the Web Single Sign-On scenarios such that by simply creating a tenant in ACSv2 and federating your application with it, you can allow users to login from Windows Live ID, Google, Yahoo!, Facebook and AD FS 2.0. Using the OData-based Management Service, you can further configure ACS to allow sign-in from other OpenID identity providers.
Here’s a quick list of the things that we think are the top-level features of the new version:
Integrates with Windows Identity Foundation (WIF) and it’s FedUtil tooling in Visual Studio
One-click support for Windows Live ID, Google, Yahoo!, Facebook plus easy addition of other OpenID providers
Very simple setup for federation with AD FS 2.0
Support for SAML 1.1 and 2.0 and Simple Web Tokens
ACS Hosted and Relying Party Hosted Home Realm Discovery page support with simple customization
OData-based Management Service to configure the service
A Management Portal for configuration that includes the use of federated identities to management the service
Backwards compatibility token issuing endpoint for users of the v1 service
Over the coming weeks, we have more features to add and will steadily work toward taking V2 into Production status.