To insert the link, include the following code in the HTML of your site. (The code shown here is from the ASP.NET QuickStart sample application.)

    <iframe 
       id="WebAuthControl" 
       name="WebAuthControl"
       src="http://login.live.com/controls/WebAuth.htm?appid=<%=AppId%>&context=myContext&style=font-size%3A+10pt%3B+font-family%3A+verdana%3B+background%3A+white%3B"
       width="80px"
       height="20px"
       marginwidth="0"
       marginheight="0"
       align="middle"
       frameborder="0"
       scrolling="no"
       style="border-style: hidden; border-width: 0">
   </iframe>

Important:
If the page addressed by your return URL or other pages on your site use Secure Sockets Layer (SSL), use "https" in the src attribute for the Sign in link.

When you insert the preceding code in your Web site, you must customize it a little for your application. Specifically, you must replace the values for the appid, context and style parameters (shown in bold in the example) with the proper values for your implementation. The following table provides descriptions for these parameters.

Parameter	Description
appid	The application ID that you obtained when you first registered your site. This query-string parameter is required. It tells the Windows Live ID authentication server where to sign in the user. For details, see Getting Your Application ID for Web Authentication.
context	The parameter that holds user state for your application. For example, if the user is on your page www.example.com/xyz.htm, you can pass "xyz.htm" to the Windows Live ID service as context. When the user is redirected back to your site, you can send him or her back to xyz.htm to continue what they were doing before signing in. Note: To help protect against script-injection attacks, there are limitations on the strings that may be specified for the context parameter. Script of any kind is strictly forbidden. The Windows Live ID service will convert unsafe characters to safe characters or may discard the value that you provide altogether. We recommend that you handle state in your application by using your own proprietary cookies.
style	The set of attributes that help to make the sign-in IFRAME element fit your site visually. These attributes are defined according to Cascading Style Sheet (CSS) specifications. The following attributes are currently supported: font-family font-weight font-style font-size color background When you specify a value for the style parameter, you must supply these attributes in a semicolon-delimited, URL-encoded form. For example, the following is an example of an unencoded style string. font-size: 10pt; font-family: verdana; background: white; In contrast, the following example shows the same string after URL encoding: font-size%3A+10pt%3B+font-family%3A+verdana%3B+background%3A+white%3B

After you have properly customized the sign-in link code and inserted it into your page, that code causes the appropriate sign-in or sign-out link to be displayed to the user. The following figure shows the output of the Web Authentication sample application as it appears to a user who has not yet signed in.

Make sure to incorporate the sign-in link into the design of your site so that it is easily recognized by your users.

When users click the sign-in link, they go to the Windows Live ID sign-in page. This page contains a disclaimer similar to the following: Windows Live is not affiliated with www.<your site>.com and will share with it only an anonymous ID. For additional protection, you may use an Information Card. We recommend that you design your site to prepare users for this disclaimer by letting them know that Windows Live ID and your site do not share any data. We also recommend that you have a well-defined privacy policy.