browse.develop.com
Browse.develop.com is a community that was established to collect and organize valuable web information. Our technical staff have selected and indexed information and courses that they feel will help you stay current on best practices across the SDLC.

12 Articles match "Authentication","WCF"

Related DevelopMentor Courses MORE
Secure WCF REST Services with a Custom UserNamePasswordValidator
When securing WCF services you’re faced with a choice: Message versus Transport security. Once you’ve settled on the option of transport security, there’s the issue of which authentication mode to use. In most B2B scenarios, it makes sense to go with X509 certificates for client authentication, but that also places demands on clients to sign messages using the certificate. Another possibility is plain old shared-secret authentication where you might look up usernames and passwords in a database in order to authenticate requests. Technical REST Security WCF
DevelopMentor Courses - Monday, May 28, 2012
READ MORE
Certificate Validation and Setting up Service Bus 1.0 Beta for Windows Server
The usage of the certificate must be correct for the supported purposes of the cert (server authentication, client authentication, code signing, etc). For a server authentication cert (often known as an SSL cert) the subject of the cert must be the same as the server DNS name. It also generates a server authentication cert with the machine name you are installing on. With these in place the Getting Started / Brokered Messaging / QueuesOnPrem sample should work fine.NET;Azure;ServiceBus;WCFMicrosoft recently announced the beta of Service Bus 1.0 For 1.
DevelopMentor Courses - Wednesday, July 25, 2012
READ MORE
Service-Orientation Today and Tomorrow Training
In Deutsch , klicken Sie hier Based on the ranges of topics below, you will be able to take the first steps in the world of Service-Orientation and Cloud Computing with confidence and above all be prepared for future projects: Service-Orientation Cloud and Cloud Computing Identity Management and Claims-Based Identity Windows Communication Foundation (WCF) Windows Workflow Foundation (WF) Azure Services Platform (with Windows Azure and.NET Services) In Deutsch , klicken Sie hier Are you tired of constantly reading about "crisis" and "restrictions"? WCF includes the ?Web
DevelopMentor Courses - Tuesday, March 1, 2011
READ MORE

47 Articles match "Authentication","WCF"

The Latest from DevelopMentor MORE
Certificate Validation and Setting up Service Bus 1.0 Beta for Windows Server
The usage of the certificate must be correct for the supported purposes of the cert (server authentication, client authentication, code signing, etc). For a server authentication cert (often known as an SSL cert) the subject of the cert must be the same as the server DNS name. It also generates a server authentication cert with the machine name you are installing on. With these in place the Getting Started / Brokered Messaging / QueuesOnPrem sample should work fine.NET;Azure;ServiceBus;WCFMicrosoft recently announced the beta of Service Bus 1.0 For 1.
DevelopMentor Courses - Wednesday, July 25, 2012
READ MORE
Secure WCF REST Services with a Custom UserNamePasswordValidator
When securing WCF services you’re faced with a choice: Message versus Transport security. Once you’ve settled on the option of transport security, there’s the issue of which authentication mode to use. In most B2B scenarios, it makes sense to go with X509 certificates for client authentication, but that also places demands on clients to sign messages using the certificate. Another possibility is plain old shared-secret authentication where you might look up usernames and passwords in a database in order to authenticate requests. Technical REST Security WCF
DevelopMentor Courses - Monday, May 28, 2012
READ MORE
ASP.NET WebAPI Security 2: Identity Architecture
The first important takeaway is that WebAPI is hosting independent- currently it ships with two host integration implementations – one for ASP.NET (aka web host) and WCF (aka self host). Either to some authenticated user – or to an anonymous principal. Here the principal property gets only set when the host is configured for Windows authentication (inconsisteny). This might not always be what you want – think of an ASP.NET app that consists of UI and APIs – the UI might use Forms authentication, the APIs token based authentication. Why so generic? Stay tuned.
www.leastprivilege.com - Thursday, March 8, 2012
READ MORE
  • The Best from DevelopMentor MORE
  • Using Silverlight to Access WIF secured WCF Services
    Another technology that comes up very often is Silverlight – and especially the “story” of Silverlight and WCF/WIF. An example would be that the user first authenticates with the web application and then starts the Silverlight app from there. In this case all the authentication related work was done by browser beforehand and all back-end requests simply re-transmit authentication headers, cookies and the like. Those of you with WCF background will say: “that’s what the federation bindings in WCF are for”. You have to somehow authenticate with the STS.
    www.leastprivilege.com - Wednesday, October 28, 2009
    READ MORE
  • Token based Authentication for WCF HTTP/REST Services: Authentication
    This post shows some of the implementation techniques for adding token and claims based security to HTTP/REST services written with WCF. The framework should be able to handle typical scenarios like username/password based authentication, as well as token based authentication. Should work with WCF web programming model either self-host or IIS hosted. In WCF the main extensibility point for this kind of security work is the ServiceAuthorizationManager. The custom authorization manager will also try to invoke a configured claims authentication manager.
    www.leastprivilege.com - Tuesday, November 15, 2011
    READ MORE
  • Token based Authentication for WCF HTTP/REST Services: Authorization
    In the previous post I showed how token based authentication can be implemented for WCF HTTP based services. Authentication is the process of finding out who the user is – this includes anonymous users. Inside these operations you might have an authenticated or an anonymous principal on Thread.CurrentPrincipal , and it is up to your code to decide what to do. Then it is up to the service to decide under which circumstances the client has access to the service as a whole or individual operations. This is called authorization. public string GetInfo(). {. }.
    www.leastprivilege.com - Wednesday, November 16, 2011
    READ MORE
  • Token based Authentication for WCF HTTP/REST Services: The Client
    If you wondered how a client would have to look like to work with the authentication framework, it is pretty straightfoward: Request a token. Put that token on the authorization header (along with a registered scheme) and make the service call. e.g.: var oauth2 = new OAuth2Client (_oauth2Address); var swt = oauth2.RequestAccessToken(. username" , "password" , _baseAddress.AbsoluteUri); var client = new HttpClient { BaseAddress = _baseAddress }; client.DefaultRequestHeaders.Authorization =. IdentityModel IdentityServer
    www.leastprivilege.com - Tuesday, November 15, 2011
    READ MORE
  • Secure WCF REST Services with a Custom UserNamePasswordValidator
    When securing WCF services you’re faced with a choice: Message versus Transport security. Once you’ve settled on the option of transport security, there’s the issue of which authentication mode to use. In most B2B scenarios, it makes sense to go with X509 certificates for client authentication, but that also places demands on clients to sign messages using the certificate. Another possibility is plain old shared-secret authentication where you might look up usernames and passwords in a database in order to authenticate requests. Technical REST Security WCF
    DevelopMentor Courses - Monday, May 28, 2012
    READ MORE
  • Token based Authentication and Claims for Restful Services
    While there is limited support for WCF WebServiceHost based services (for standard credential types like Windows and Basic), there is no ready to use plumbing for RESTful services that do authentication based on tokens. HTTP Services and Authentication. Basic for basic authentication credentials). HTTP also includes a way to advertise the right credential type back to the client, for this the WWW-Authenticate response header is used. In (todays) WCF, you would use the ServiceAuthorizationManager infrastructure. Here’s how. Claims transformation.
    www.leastprivilege.com - Tuesday, November 15, 2011
    READ MORE
  • WCF RIA Services Webinar
    I’m performing a free webinar today for DevelopMentor : Turbocharge Silverlight Development w/WCF RIA Services. Here’s the description: Writing a full-fledged Rich Internet Application presents a number of daunting challenges: forced n-tier, async, latency, validation, concurrency, and authentication. WCF RIA Services simplifies and streamlines the process with support for query composability, change-tracking and batch updates, attributes for presentation and data validation, shared code and async support. It’s taking place today, Wed April 20, 2011, at 3 pm pst, 11 pm bst.
    Tony and Zuzana's World - Wednesday, April 20, 2011
    READ MORE
%>