We are implementing STS (claim based authentication) for the the REST based services. One

Question

0

Asked: May 20, 20262026-05-20T04:32:50+00:00 2026-05-20T04:32:50+00:00

We are implementing STS (claim based authentication) for the the REST based services. One

0

We are implementing STS (claim based authentication) for the the REST based services. One of the reasons amongst many when we decide to create REST services (with JSON) was the small footprint over the wire. With STS, the SAML token with just a few claims the SAML size becomes few K bytes. For most of the REST calls where we are not returning list of objects, the response size is low 100s bytes and for those calls this token seems too much of overhead. How do you dealt with this in your projects?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-20T04:32:51+00:00

Editorial Team

2026-05-20T04:32:51+00:00Added an answer on May 20, 2026 at 4:32 am

You can use SAML tokens with REST endpoints, but more often you will find people using Simple Web Tokens (SWT) instead. Smaller, simpler, etc.

ACS (Access Control Service in Windows Azure PLatform) implements this, for example.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

We are implementing STS (claim based authentication) for the the REST based services. One

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply