Cleaned up WCF sample service a bit now that we have IPrincipal working.

samples/OAuthServiceProvider/App_Code/DataApi.cs

@@ -1,20 +1,26 @@
 using System.Linq;
 using System.ServiceModel;
 
+/// <summary>
+/// The WCF service API.
+/// </summary>
+/// <remarks>
+/// Note how there is no code here that is bound to OAuth or any other
+/// credential/authorization scheme.  That's all part of the channel/binding elsewhere.
+/// And the reference to Global.LoggedInUser is the user being impersonated by the WCF client.
+/// In the OAuth case, it is the user who authorized the OAuth access token that was used
+/// to gain access to the service.
+/// </remarks>
 public class DataApi : IDataApi {
-	private static OAuthToken AccessToken {
-		get { return OperationContext.Current.IncomingMessageProperties["OAuthAccessToken"] as OAuthToken; }
-	}
-
 	public int? GetAge() {
-		return AccessToken.User.Age;
+		return Global.LoggedInUser.Age;
 	}
 
 	public string GetName() {
-		return AccessToken.User.FullName;
+		return Global.LoggedInUser.FullName;
 	}
 
 	public string[] GetFavoriteSites() {
-		return AccessToken.User.FavoriteSites.Select(site => site.SiteUrl).ToArray();
+		return Global.LoggedInUser.FavoriteSites.Select(site => site.SiteUrl).ToArray();
 	}
 }

samples/OAuthServiceProvider/App_Code/OAuthAuthorizationManager.cs

@@ -43,7 +43,6 @@ public class OAuthAuthorizationManager : ServiceAuthorizationManager {
 			// Only allow this method call if the access token scope permits it.
 			string[] scopes = accessToken.Scope.Split('|');
 			if (scopes.Contains(operationContext.IncomingMessageHeaders.Action)) {
-				operationContext.IncomingMessageProperties["OAuthAccessToken"] = accessToken;
 				return true;
 			}
 		}