The goal of this whitepaper is to show developers how to use a claims-based identity model and the Access Control feature of the Windows Azure platform AppFabric to implement single sign-on, federated identity, and role based access control in REST Web Services and clients today, with support for WS-* and single sign on for web applications coming in the future.