Windows Store apps often require user authorization before they can carry out an action or access resources. However, the currently authenticated user might belong to a certain group of users or a domain that does not grant access to certain features of the app. An app could be used in multiple locations, including an intranet or corporate environment, in a home or public network, and so on. Therefore, user authorization based on a user name and password is not adequate. The implementation of authorization in Windows Store apps requires a technology that provides the identity of a user and roles while on the intranet of an organization or on the public Internet. Claims-based identity provides a common ...