In the previous post we summed up the components for the Cloud Platform. In this post lets get started with building an Azure Website that will host our Cloud Platform pages and services. This site will also provide Tokens to clients for authenticated access to hosted services and resources. To keep it really simple I will make it as a simple web application with an aspx pages and Ajax enabled REST web service endpoints. I will not use the MVC pattern or WEB API as I do not want to add all the extras that gets included using the MVC templates.
So first things first we need to go to the Azure Management Portal and provision a website, and add two Applications in the Azure Active Directory. (https://manage.windowsazure.net) as follows.
our website named “platformservices” at https://platformservices.azurewebsites.net
Add two applications in our Active Directory
1 – Platform Services (Enabling Sign On at: https://platformservices.azurewebsites.net/ourpage.aspx).
2 – Platform Toolkit Client (Enabling Azure Management Services)
With the above setup in place we are ready to build the web application that will be hosted on this site and will provide an aspx page that will enable single sign on, in our case we will just get the user’s identity. Visual Studio 2012 use to provide an add-on for Identity And Access enabling single Sign On to a web application, this has been changed in Visual Studio 2013, we will use Visual Studio 2013 to create a web.config file with the required markup needed to enable Federated Authentication.
By downloading the publish profile from the Azure Management Portal for the Platform Services Azure website that we put together earlier we can now publish our Visual Studio Solution. This solution only has a page called identitytoken.aspx. This page provides authenticated access using the Azure Active Directory user credentials. If the user is logged into Office 365 or Azure, it will print the user name and if not logged in; will be redirected to the login page.
After publishing the solution and navigating to https://platformservices.azurewebsites.net/identitytoken.aspx we will be getting a login screen like this and if we are already signed then the user name will be displayed.
Great progress – we now have a web site that can be used to add Platform Services that can be securely accessed by client application. In the next post we will put together some use cases for using this platform. We will build a REST service endpoint and an app that will communicate with each other and exchanging Tokens for authentication and authorization.
Good luck.. Stay tuned. Tomorrow is Sunday so I may get some time to move this further.