Authentication of each call in WCF

Question

Authentication of each call in WCF

I have a silverlight application that calls my wcf services, so this is basichttpbinding. and we use authentication. I want to do authentication for every call I receive, except for the "Authentication service" (since this is the method that will perform basic authentication for logging in), so after the user logs in and tries to call other services, I want this authentication, verify that it is performed so that access is granted to authorized users only. Is there a better way to implement this ... ???

After searching various blogs, I found out that we can use the HttpContext.Current .... IsAuthenticated property to authenticate the user or not. But my question is, how safe and acceptable is HttpContext? Can we rely on this? or should we use OperationContext? (and yes, aspnetcompatability is set to true).

Please suggest !!

Thanks in advance Sai

+3

silverlight wcf

Sai Nov 05 '09 at 18:24

source share

2 answers

Drew Marsh · Answer 1 · 2009-11-06T02:24:54+0000

If you host your WCF services during ASP.NET runtime (i.e. <serviceHostingEnvironment aspNetCompatibilityEnabled="true" />), you should absolutely be able to rely on ASP.NET security.

, ASP.NET ASMX. WCF, ASP.NET .

alexdej · Answer 2 · 2009-11-05T18:52:33+0000

, :

http://msdn.microsoft.com/en-us/library/dd560702(VS.95).aspx http://silverlightuk.blogspot.com/2008/03/silverlight-wcf-and-aspnet.html http://smehrozalam.wordpress.com/2009/01/07/securing-silverlight-application-and-wcf-service-using-aspnet-authentication-techniques/

: asp.net HttpContext.Current( AspNetCompatMode).

Authentication of each call in WCF

More articles: