C# Class WindowsLive.WindowsLiveLogin

Decodes and validates the raw token.

Decodes and validates the raw token with appropriate crypt key and sign key.

Decode the given token. Returns null on failure.

Decode the given token. Returns null on failure.

Returns the URL needed to retrieve the application security token. The application security token will be generated for the Windows Live site. JavaScript Output Notation (JSON) output is returned: {"token":"<value>"}

Returns the URL needed to retrieve the application security token. By default, the application security token will be generated for the Windows Live site; a specific Site ID can optionally be specified in 'siteId'. JSON output is returned: {"token":"<value>"}

Returns the URL needed to retrieve the application security token. By default, the application security token will be generated for the Windows Live site; a specific Site ID can optionally be specified in 'siteId'. The IP address can also optionally be included in 'ip'. JSON output is returned: {"token":"<value>"}

Returns the URL needed to retrieve the application security token. By default, the application security token will be generated for the Windows Live site; a specific Site ID can optionally be specified in 'siteId'. The IP address can also optionally be included in 'ip'. If 'js' is false, then JSON output is returned: {"token":"<value>"} Otherwise, a JavaScript response is returned. It is assumed that WLIDResultCallback is a custom function implemented to handle the token value: WLIDResultCallback("<tokenvalue>");

Returns a string that can be passed to the GetTrustedParams function as the 'retcode' parameter. If this is specified as the 'retcode', then the app will be used as return URL after it finishes trusted sign-in.

Retrieves the application security token for application verification from the application sign-in URL. The application security token will be generated for the Windows Live site.

Retrieves the application security token for application verification from the application sign-in URL. By default, the application security token will be generated for the Windows Live site; a specific Site ID can optionally be specified in 'siteId'.

Retrieves the application security token for application verification from the application sign-in URL. By default, the application security token will be generated for the Windows Live site; a specific Site ID can optionally be specified in 'siteId'. The IP address can also optionally be included in 'ip'. Implementation note: The application security token is downloaded from the application sign-in URL in JSON format {"token":"<value>"}, so we need to extract <value> from the string and return it as seen here.

Generates an Application Verifier token.

Generates an Application Verifier token. An IP address can be included in the token.

Returns an appropriate content type and body response that the application handler can return to signify a successful sign-out from the application. When a user signs out of Windows Live or a Windows Live application, a best-effort attempt is made to sign the user out from all other Windows Live applications the user might be signed in to. This is done by calling the handler page for each application with 'action' parameter set to 'clearcookie' in the query string. The application handler is then responsible for clearing any cookies or data associated with the sign-in. After successfully signing the user out, the handler should return a GIF (any GIF) as response to the action=clearcookie query.

Returns the consent URL to use for Delegated Authentication for the given comma-delimited list of offers.

Returns the consent URL to use for Delegated Authentication for the given comma-delimited list of offers.

Returns the consent URL to use for Delegated Authentication for the given comma-delimited list of offers.

Returns the consent URL to use for Delegated Authentication for the given comma-delimited list of offers.

Returns the sign-in URL to use for the Windows Live Login server. We recommend that you use the Sign In control instead.

Returns the sign-in URL to use for the Windows Live Login server. We recommend that you use the Sign In control instead.

Returns the sign-in URL to use for the Windows Live Login server. We recommend that you use the Sign In control instead.

Returns the sign-out URL to use for the Windows Live Login server. We recommend that you use the Sign In control instead.

Returns the sign-out URL to use for the Windows Live Login server. We recommend that you use the Sign In control instead.

Returns the URL for the consent-management user interface.

Returns the URL for the consent-management user interface.

Returns the URL to use to download a new consent token, given the offers and refresh token.

Returns the URL to use to download a new consent token, given the offers and refresh token.

Returns the trusted sign-in URL to use for the Windows Live Login server.

Returns the trusted sign-out URL to use for the Windows Live Login server.

Returns a table of key-value pairs that must be posted to the sign-in URL for trusted sign-in. Use HTTP POST to do this. Be aware that the values in the table are neither URL nor HTML escaped and may have to be escaped if you are inserting them in code such as an HTML form. The user to be trusted on the local site is passed in as string 'user'.

Returns a table of key-value pairs that must be posted to the sign-in URL for trusted sign-in. Use HTTP POST to do this. Be aware that the values in the table are neither URL nor HTML escaped and may have to be escaped if you are inserting them in code such as an HTML form. The user to be trusted on the local site is passed in as string 'user'. Optionally, 'retcode' specifies the resource to which successful sign-in is redirected, such as Windows Live Mail, and is typically a string in the format 'id=2000'. If you pass in the value from GetAppRetCode instead, sign-in will be redirected to the application. Otherwise, an HTTP 200 response is returned.

Returns the trusted sign-in token in the format needed by the trusted sign-in gadget. User to be trusted on the local site is passed in as string 'user'.

Processes the POST response from the Delegated Authentication service after a user has granted consent. The processConsent function extracts the consent token string and returns the result of invoking the processConsentToken method.

Processes the consent token string that is returned in the POST response by the Delegated Authentication service after a user has granted consent.

Processes the consent token string that is returned in the POST response by the Delegated Authentication service after a user has granted consent.

Processes the sign-in response from the Windows Live Login server.

Decodes and validates a Web Authentication token. Returns a User object on success.

Decodes and validates a Web Authentication token. Returns a User object on success. If a context is passed in, it will be returned as the context field in the User object.

Attempts to obtain a new, refreshed token and return it. The original token is not modified.

Attempts to obtain a new, refreshed token and return it. The original token is not modified.

Attempts to obtain a new, refreshed token and return it using the offers and refresh token. The original token is not modified.

Attempts to obtain a new, refreshed token and return it using the offers and refresh token. The original token is not modified.

Creates a signature for the given string.

Creates a signature for the given string by using the signature key.

Extracts the signature from the token and validates it.

Extracts the signature from the token and validates it by using the signature key.

Initialize the WindowsLiveLogin module from the web.config file if loadAppSettings is true. Otherwise, you will have to manually set the AppId, Secret and SecurityAlgorithm properties. In a Delegated Authentication scenario, you may also specify the return and privacy policy URLs to use, as shown in the Delegated Authentication samples.

Initialize the WindowsLiveLogin module with the forceDelAuthNonProvisioned flag, policy URL, and return URL. The 'force_delauth_nonprovisioned' flag indicates whether your application is registered for Delegated Authentication (that is, whether it uses an application ID and secret key). We recommend that your Delegated Authentication application always be registered for enhanced security and functionality.

APPID SECRET wsignin1.0 http://[your domain]/[your privacy policy] http://[your domain]/[your return url] In a Delegated Authentication scenario, you may also specify 'returnurl' and 'policyurl' in the settings file. We recommend that you store the Windows Live Login settings file in an area on your server that cannot be accessed through the Internet. This file contains important confidential information. ]]>

Initialize the WindowsLiveLogin module with the application ID and secret key. We recommend that you employ strong measures to protect the secret key. The secret key should never be exposed to the Web or other users.

Initialize the WindowsLiveLogin module with the application ID, secret key, and security algorithm. We recommend that you employ strong measures to protect the secret key. The secret key should never be exposed to the Web or other users.

Initialize the WindowsLiveLogin module with the application ID, secret key, security algorithm and forceDelAuthNonProvisioned flag. We recommend that you employ strong measures to protect the secret key. The secret key should never be exposed to the Web or other users. The 'force_delauth_nonprovisioned' flag indicates whether your application is registered for Delegated Authentication (that is, whether it uses an application ID and secret key). We recommend that your Delegated Authentication application always be registered for enhanced security and functionality.

Initialize the WindowsLiveLogin module with the application ID, secret key, security algorithm, forceDelAuthNonProvisioned and policy URL use. We recommend that you employ strong measures to protect the secret key. The secret key should never be exposed to the Web or other users. The 'force_delauth_nonprovisioned' flag indicates whether your application is registered for Delegated Authentication (that is, whether it uses an application ID and secret key). We recommend that your Delegated Authentication application always be registered for enhanced security and functionality.

Stub implementation for logging debug output. You can run a tool such as 'dbmon' to see the output.

Derives the key, given the secret key and prefix as described in the Web Authentication SDK documentation.

Base64-encodes and URL-escapes a byte array.

Fetches the contents given a URL.

Generates a timestamp suitable for the application verifier token.

Parses query string and return a table representation of the key and value pairs. Similar to HttpUtility.ParseQueryString, except that no URL decoding is done and only the last value is considered in the case of multiple values with one key.

Function to parse the settings file.

URL-unescapes and Base64-decodes a string.