WS-Federation was developed by an industry consortium and was released in December 2006, with Microsoft being a key contributor. WS-Federation is also part of a larger framework, WS-Security, and builds on the work of WS-Trust from February 2005, defining the following two key principles:
It also defines two profiles:
- Active Requestor Profile
- Passive Requestor Profile
WS-* Federation Suite consists of:
- WS-Trust
- WS-Federation
- WS-Policy
In the next section, we will describe the key elements of the WS-Federation specification.
In WS-Federation, in contrast to SAML, the token can be anything. Basically no defined messages are used. On the other hand, a suggestion is made for the use of a web service. The WS-Federation standard uses SOAP and makes the tunneling of SOAP available via the Web browser. The token for this standard...