Authentication via WebService by default MembershipProvider

Question

Authentication via WebService by default MembershipProvider

What is the best practice when you need to authenticate a specific OperationContractsone using default MembershipProvidersecurity ( FormsAuthentication).

I assume that the execution Membership.ValidateUserand Membership.GetUsersimply will not cut it when using WebServices, right?

In other words: How can I check if a user is allowed to use certain methods in a web service (that the user is authenticated / "logged in")?

+3

security c # forms-authentication wcf

Mickel Apr 2 '10 at 13:42

source share

2 answers

, , , , WCF -, -. , - .

, , (CAS) .

( )

internal class ServiceWrapper
{
    Service Svc;
    public ServiceWrapper()
    {
        Svc = ServiceClient();
    }

    [System.Security.Permissions.PrincipalPermission(System.Security.Permissions.SecurityAction.Demand, Role = "HelloWorld")]
    public string HelloWorld()
    {
        return Svc.HelloWorld();
    }
}

, CAS ( ), WCF, . , , WCF , : -)

...

!

+1

Bennett Dill 06 . '10 1:08

sblom · Accepted Answer · 2010-04-04T18:15:06+0000

, FormsAuthentication . WCF : http://msdn.microsoft.com/en-us/magazine/cc948343.aspx

Authentication via WebService by default MembershipProvider

More articles: