Welcome Sign in
Windows Live Developer Center
Printer Friendly Version      Send     
Click to Rate and Give Feedback
MSDN
MSDN Library
Web Development
Windows Live
Windows Live ID SDK
Web Authentication
Getting Started
 Getting Your Application ID
Windows Live
Getting Your Application ID for Web Authentication

To implement Windows Live ID, you must register your Web site with Microsoft® as an application and receive an application ID for use with the service. Only a person who has a valid Windows Live ID can register an application and obtain an application ID. After you create the application, you can sign in and change it whenever you want.

Note:
You do not need to register to run the QuickStart samples, but you must register before you can extend the samples for use on your live Web site.
Important:
The Web Authentication application ID is 64 bits (or 8 bytes or 16 hexadecimal digits) long. The User ID is 128 bits (or 16 bytes or 32 hexadecimal digits) long.

As part of registering your application, you must create a secret key. Windows Live ID uses this key to encrypt and sign all tokens that it sends to your site. It is strongly recommended that you employ strong security measures to protect this key. The following links offer ways in which to implement these security measures:

The Windows Live ID application-management page assists you with the registration process, issues your application ID to you, and provides a place where you can continue to manage all the applications you register.

To get your application ID

  1. Go to the Windows Live ID application page (https://msm.live.com/app/default.aspx).

  2. Click Register an Application.
  3. Sign in by supplying valid Windows Live ID credentials. (Your Windows Live ID identifies you as the owner of the applications you register.) The following page appears.

  4. Provide the information described in the following table.

    Item Description

    Application Name

    The application name is a unique and friendly name that you use to refer to your application. We recommend specifying a human-readable name.

    Important:
    The application name you specify should contain only alphanumeric characters and cannot be changed after registration is complete.

    Return URL

    The return URL is the URL of the page on your Web site to which the Windows Live ID authentication service redirects users (along with the authentication token) after they have successfully signed in, signed out, or cleared their cookies.

    You must create a page on your site corresponding to the return URL, to handle the response from the authentication service. For more information, see Handling the Response from the Service.

    You can change the return URL later when you extend and adapt the sample code to your Web site.

    Important:
    If your return URL or other site pages use Secure Sockets Layer (SSL), use "https" in the src attribute for the sign-in link. For more information, see Displaying the Sign-in Link.
    The return URL must be a fully qualified Domain Name System (DNS) URL pointing to a page on your Web site, and it must not contain IP addresses or query-string parameters.

    Domain Name

    The domain name of the application. For most applications, this domain name must be a fully qualified Domain Name System (DNS) that is unique to your application.

    Important:
    If you are using only Web Authentication, ignore this field. To function correctly, Web Authentication requires that you leave the Domain Name field empty.
    This restriction does not apply if you are using Web Authentication in conjunction with Delegated Authentication. For more information about Delegated Authentication, see the Windows Live ID Delegated Authentication SDK for Application Providers.

    Secret Key

    The secret key is a shared secret between you and Windows Live ID. Windows Live ID uses this key to encrypt and sign all tokens that it sends to your site. You should choose a secret key that is difficult to guess and create security procedures to manage this key.

    The secret key must meet the following minimum requirements:

    • Be between 16 and 64 characters in length
    • The secret key cannot contain any of the following characters:< > % ;
    Important:
    Although not required, we strongly recommend that the secret key comply with the following additional recommendations:
    • Be case sensitive
    • Use three of the following four types of characters:
      • Uppercase letters (A, B, C…)
      • Lowercase letters (a, b, c…)
      • Numerals (1, 2, 3…)
      • Special characters (` ~ ! @ # $ ^ & * ( ) _ + - = { } | [ ] \ : " ' ? , . /)
    • Not contain any of the following:
      • Common words or names or close variations
      • Spaces or non-English characters
      • Any portion of your e-mail address
      • Any portion of your secret question or answer
      • Any of the following characters:< > % ;

    Application Verifier Required

    Specifies if the application verification token is required for this application. A value of 0 indicates that this token is not required; a value of 1 indicates that is required. For Web Authentication, set this value to 0.
  5. Type the characters you see in the picture, and then select the View the Windows Live ID terms of use check box.
  6. Click Submit. After registration is complete, your application ID is displayed.
    Note:
    The application ID is a 16-character string that represents your application. Record this string for later use.

Registration is finished! You can now begin implementing Web Authentication.

Whenever you want to retrieve your application data, return to the Windows Live ID application page and click Manage My Applications. Sign in with the Windows Live ID account that you used during registration to see and manage your applications.

© 2008 Microsoft Corporation. All rights reserved. Terms of Use  |  Trademarks  |  Privacy Statement
Page view tracker