98 Articles match "WCF"
See all articles with "WCF"

• Username/Password Validation with Geneva
  
  In my previous post I mentioned that Geneva takes over parts of the WCF security system - I used the example of certificate validation. This is because Geneva takes over parts of the WCF processing pipeline and injects its own token parsing and validation system. Tags: IdentityModel;WCF This is also true for username/password authentication. In the case you have an existing service with a UserNamePasswordValidator - as soon as you opt-into Geneva, the validator will stop to work. In Geneva, so-called SecurityTokenHandlers read and validate incoming tokens. get. {.
  www.leastprivilege.com - Thursday, November 13, 2008
  READ MORE
• Using Silverlight to Access WIF secured WCF Services (Part 2)
  
  cache.AddTokenToCache( "myRP" , args.Result); }; client.IssueAsync(rst); Using a Token to authenticate with a WCF Relying Party. This allows calling a WCF service like this: private void CallService(). {. The trick here again is, that the client stack is configured for no security at all, whereas the WCF service uses a federation binding (with SecureConversation turned off). This was one of my most popular blog post in the recent time (please read it first to get the necessary background information). thought I give this another shot with the new SL/WIF integration.
  www.leastprivilege.com - Sunday, March 21, 2010
  READ MORE
• Token based Authentication for WCF HTTP/REST Services: Authentication
  
  This post shows some of the implementation techniques for adding token and claims based security to HTTP/REST services written with WCF. Should work with WCF web programming model either self-host or IIS hosted. In WCF the main extensibility point for this kind of security work is the ServiceAuthorizationManager. WCF error handler takes care of turning “access denied” faults into 401 status codes and a message inspector adds the registered authentication schemes to the outgoing WWW-Authenticate header when a 401 occurs. Disclaimer. Goals and requirements.
  www.leastprivilege.com - Tuesday, November 15, 2011
  READ MORE
• Token based Authentication for WCF HTTP/REST Services: Authorization
  
  In the previous post I showed how token based authentication can be implemented for WCF HTTP based services. Authentication is the process of finding out who the user is – this includes anonymous users. Then it is up to the service to decide under which circumstances the client has access to the service as a whole or individual operations. This is called authorization. By default – my framework does not allow anonymous users and will deny access right in the service authorization manager. You can flip that switch in the configuration class that you can pass into the service host/factory.
  www.leastprivilege.com - Wednesday, November 16, 2011
  READ MORE
• Custom WCF Credential Types
  
  Every once in a while the question comes up how to extend WCF with custom credential types. Unfortunately this is not the best documented area of WCF and you are mostly on your own. The WCF credential infrastructure is extremely flexible – but I wouldn’t call it an extensibility point – but rather a replacement point. You could use a standard token type in WCF that already supports all the extensibility needs you might have – e.g. SAML. Tags: WCF;IdentityModel username/password/customer ID). You could use SOAP headers to transmit the additional information.
  www.leastprivilege.com - Monday, March 9, 2009
  READ MORE
• Token based Authentication for WCF HTTP/REST Services: The Client
  
  If you wondered how a client would have to look like to work with the authentication framework, it is pretty straightfoward: Request a token. Put that token on the authorization header (along with a registered scheme) and make the service call. e.g.: var oauth2 = new OAuth2Client (_oauth2Address); var swt = oauth2.RequestAccessToken(. username" , "password" , _baseAddress.AbsoluteUri); var client = new HttpClient { BaseAddress = _baseAddress }; client.DefaultRequestHeaders.Authorization =. IdentityModel IdentityServer
  www.leastprivilege.com - Tuesday, November 15, 2011
  READ MORE
• P2P and WCF: The PeerName Tool
  
  Tags: WCF
  www.leastprivilege.com - Tuesday, May 13, 2008
  READ MORE

309 Articles match "WCF"
See all articles with "WCF"

• The Best from DevelopMentor

  MORE

• WCF Duplex Messaging
  
  I am one of the moderators of the MSDN WCF Forum. However, the first three of these are supported natively in WCF and are known as One-way, request/response and duplex. Duplex Contracts in WCF. In WCF this idea is modelled by the contract. WSHttpBinding is the default for the built in WCF projects but it does not support duplex messaging. It will also need to supply this implementation to the WCF infrastructure and it does this by wrapping an instance in an InstanceContext object and passing it to the proxy constructor. Tags: NET;Azure;WCF
  .NET Meanderings - Tuesday, June 9, 2009
  READ MORE
• WCF Instances and Threading
  
  I have just found myself answering essentially the same question 4 times on the MSDN WCF Forum about how instances, threading and throttling interact in WCF. WCF has 3 built in instancing models: PerCall, PerSession and Single. By default WCF assumes you do not understand multithreading. Unless you turn on ASP.NET Compatibility, WCF calls are processed on IO threads in the system threadpool. You can control the throttle values using the serviceThrottling service behavior which you set in the config file or in code.NET;WCFInstancing. Concurrency.
  DevelopMentor Courses - Friday, February 4, 2011
  READ MORE
• Using Silverlight to Access WIF secured WCF Services
  
  Another technology that comes up very often is Silverlight – and especially the “story” of Silverlight and WCF/WIF. Those of you with WCF background will say: “that’s what the federation bindings in WCF are for”. In WCF you can work around that problem by adding the ValidateMustUnderstand behavior to the client stack. Tags: IdentityModel WCF This topic comes up quite often recently – so I hope the title is search engine friendly. Disclaimer: At the time of this writing, the current version of Silverlight is v3 and WIF is in beta 2. Passive. Active. WSTrust13.
  www.leastprivilege.com - Wednesday, October 28, 2009
  READ MORE
• Inversion of control and WCF
  
  One of these case is with an WCF service where WCF takes care of the service lifetime and creates new objects as needed. Fortunately WCF is designed in a very modular fashion itself and allows you to replace almost everything in the box. Basically WCF uses an implementation of the IInstanceProvider to create new service objects. Using Ninject with WCF There are plenty of IOC containers to choose from but I like Ninject and that is available through NuGet so that is what I will use for this example. www.dotnetevents.nl.NET WCF VS2010 NuGetrepo = repo; }.
  The Problem Solver - Tuesday, April 19, 2011
  READ MORE
• Digging into WCF REST
  
  Last Thursday evening I presented a talk to the Dallas.NET User Group on support in WCF 4 for building REST-ful services. Building REST-ful Services with the WCF Web Programming Model REST is defined as an architectural style for building services that embrace the principles of the web. He’ll also get down and dirty using the WCF Web Programming Model and show how WCF makes it easy to serve up POX or JSON, increasing the reach of your services to clients that don’t understand or care about SOAP. WCF 3.5 WCF 4.0 Technical WCFEnjoy.
  Tony and Zuzana's World - Saturday, September 10, 2011
  READ MORE