browse.develop.com
Browse.develop.com is a community that was established to collect and organize valuable web information. Our technical staff have selected and indexed information and courses that they feel will help you stay current on best practices across the SDLC.

12 Articles match "Authentication","IIS"

Related DevelopMentor Courses MORE
Secure WCF REST Services with a Custom UserNamePasswordValidator
Once you’ve settled on the option of transport security, there’s the issue of which authentication mode to use. In most B2B scenarios, it makes sense to go with X509 certificates for client authentication, but that also places demands on clients to sign messages using the certificate. Another possibility is plain old shared-secret authentication where you might look up usernames and passwords in a database in order to authenticate requests. If you’re hosting in IIS (or IIS Express), you’re pretty much done. Download the code for this blog post here.
DevelopMentor Courses - Monday, May 28, 2012
READ MORE
Service-Orientation Today and Tomorrow Training
WCF - Hosting We learn about the different options for hosting a WCF service: IIS/WAS, Windows Services, and Smart Client applications. The idea of modeling identity in a more flexible way has led to the idea of using federation for authentication, and the concept of claims for authorization. Are you someone who would like to develop solutions for today"s problems and be prepared for future challenges? We have the course for you! In hands-on labs you can roll up your sleeves and fully understand the code through a series of in-depth exercises. We learn the basics of services?endpoints,
DevelopMentor Courses - Tuesday, March 1, 2011
READ MORE
Essential Windows Communication Foundation 4 Training
Here you learn about the different options like self hosting, IIS/WAS, and Windows Server AppFabric. Secure Communication, Authentication & Authorization WCF is all about communication - and secure communication is a heavily needed feature. Windows Communication Foundation (WCF) replaces previous technologies such as.NET Remoting, ASMX, and COM+. Because it incorporates web service standards, WCF enables interoperability with other platforms such as Java/Unix. You'll get answers to these questions: How do I design services using contracts? But what does this mean?
DevelopMentor Courses - Tuesday, March 1, 2011
READ MORE

10 Articles match "Authentication","IIS"

The Latest from DevelopMentor MORE
Secure WCF REST Services with a Custom UserNamePasswordValidator
Once you’ve settled on the option of transport security, there’s the issue of which authentication mode to use. In most B2B scenarios, it makes sense to go with X509 certificates for client authentication, but that also places demands on clients to sign messages using the certificate. Another possibility is plain old shared-secret authentication where you might look up usernames and passwords in a database in order to authenticate requests. If you’re hosting in IIS (or IIS Express), you’re pretty much done. Download the code for this blog post here.
DevelopMentor Courses - Monday, May 28, 2012
READ MORE
Token based Authentication for WCF HTTP/REST Services: Authentication
The framework should be able to handle typical scenarios like username/password based authentication, as well as token based authentication. Should work with WCF web programming model either self-host or IIS hosted. The custom authorization manager will also try to invoke a configured claims authentication manager. WCF error handler takes care of turning “access denied” faults into 401 status codes and a message inspector adds the registered authentication schemes to the outgoing WWW-Authenticate header when a 401 occurs. Disclaimer. Error handling.
www.leastprivilege.com - Tuesday, November 15, 2011
READ MORE
Weird 302 Redirects in Windows Azure
In IdentityServer I don’t use Forms Authentication but the session facility from WIF. To achieve that I turned off the built-in authentication (authenticationMode="none") and added an Application_EndRequest handler that checks for 401s and does the redirect to my sign in route. This all works fine in local IIS – but in the Azure Compute Emulator and Windows Azure many of my tests are failing and I suddenly see 302 status codes where I expected 401s (the web service calls). That also means that I implemented my own redirect logic to a login page when needed. strange.
www.leastprivilege.com - Monday, May 30, 2011
READ MORE
  • The Best from DevelopMentor MORE
  • IIS & RESTful Services #FAIL
    when will super duper IIS finally support non-Windows accounts for HTTP authentication? see here for a complete module including IIS management integration: [link]. Tags: IIS WCF really? link].
    www.leastprivilege.com - Wednesday, July 21, 2010
    READ MORE
  • Token based Authentication for WCF HTTP/REST Services: Authentication
    The framework should be able to handle typical scenarios like username/password based authentication, as well as token based authentication. Should work with WCF web programming model either self-host or IIS hosted. The custom authorization manager will also try to invoke a configured claims authentication manager. WCF error handler takes care of turning “access denied” faults into 401 status codes and a message inspector adds the registered authentication schemes to the outgoing WWW-Authenticate header when a 401 occurs. Disclaimer. Error handling.
    www.leastprivilege.com - Tuesday, November 15, 2011
    READ MORE
  • Secure WCF REST Services with a Custom UserNamePasswordValidator
    Once you’ve settled on the option of transport security, there’s the issue of which authentication mode to use. In most B2B scenarios, it makes sense to go with X509 certificates for client authentication, but that also places demands on clients to sign messages using the certificate. Another possibility is plain old shared-secret authentication where you might look up usernames and passwords in a database in order to authenticate requests. If you’re hosting in IIS (or IIS Express), you’re pretty much done. Download the code for this blog post here.
    DevelopMentor Courses - Monday, May 28, 2012
    READ MORE
  • ASP.NET Stack Overflow leads to redirect to login page
    Application: ASP.NET website running on Internet Information Server using both Windows Authentication as well as Forms Authentication. IIS steps in and starts up a new w3wp.exe process. I ran into a problem yesterday that took me a while to figure out and Bing and Google were no help, so here is a blog post for those unfortunate souls that run into the same issue. Symptoms: A action on the site leads to some processing on the server. Suddenly, in mid processing, the browser will redirect to the login page (or attempt to get new Windows credentials). ASP.NET C
    The Blomsma Code - Friday, December 10, 2010
    READ MORE
  • Windows Azure Root CAs and SSL Client Certificates
    In theory you have to do two things (via startup tasks): Unlock the SSL section in IIS. While inspecting the event log, I stumbled over an schannel error message that I’ve never seen before: “When asking for client authentication, this server sends a list of trusted certificate authorities to the client. The administrator of this machine should review the certificate authorities trusted for client authentication and remove those that do not really need to be trusted.”. Actalis Authentication CA G1 (6/25/2022 2:06:00 PM). did that. But it still does not work. VRK Gov.
    www.leastprivilege.com - Thursday, December 30, 2010
    READ MORE
  • Weird 302 Redirects in Windows Azure
    In IdentityServer I don’t use Forms Authentication but the session facility from WIF. To achieve that I turned off the built-in authentication (authenticationMode="none") and added an Application_EndRequest handler that checks for 401s and does the redirect to my sign in route. This all works fine in local IIS – but in the Azure Compute Emulator and Windows Azure many of my tests are failing and I suddenly see 302 status codes where I expected 401s (the web service calls). That also means that I implemented my own redirect logic to a login page when needed. strange.
    www.leastprivilege.com - Monday, May 30, 2011
    READ MORE
  • Geneva Beta 2 Update: ClaimsPrincipalHttpModule
    This is done by using the ctor of IClaimsIdentity that takes an X509Certificate2 which results in an authenticated identity with an authentication type set to “SSL/PCT”. Now as always, certificate based authentication is a little different to e.g. username/password. In the strict sense a user is authenticated when you know “who he is”. For usernames/passwords authentication this means as soon as you have successfully validated the password against your data store (or put differently – as soon as the user provides a proof for his identity).
    www.leastprivilege.com - Sunday, May 17, 2009
    READ MORE
%>