Stack Overflow
Stack Overflow

Questions tagged [wcf-security]

Questions related to the authentication and authorization services for Windows Communication Foundation (WCF) applications

Windows Communication Foundation is Microsoft's implementation of the WS-* web service specifications. Its security functionality mainly deals with authentication, authorization and secure over-the-wire transmission of user credentials.

When setting up WCF Security for an application, the following parameters need to be configured:

  • The type of credential required, e.g. NTLM, plaintext, or certificate authentication
  • The security mode: transport mode (e.g. SSL), message mode (SOAP message security), or a combination of both
  • Which endpoint(s) are protected

Once a client successfully connects to an endpoint protected with WCF Security, the server application can examine the security context to determine the identity of the client and to determine its authorizations (which need to be configured separately).

1285 questions
0
votes
1 answer

Passing Certificate to Svcutil to generate proxy for OSB Service

We are wanting to implement Two-Way SSL security from WCF to OSB Services. We have successfully deployed the certificates so that when you browse to the service with IE you get the appropriate prompt for certificate and then it takes you immediately…
webwires
  • 2,572
  • 3
  • 26
  • 44
0
votes
1 answer

WCF in IIS: basic authorization performed by WCF

I am hostin WCF service in IIS and I am using basic authorization. As IIS is performing the authorization, my WCF service has no ability to tell if particular user is allowed or not. Unfortunately, I have to support a list of enabled user names.…
HingeSight
  • 400
  • 5
  • 13
0
votes
1 answer

Pass User info to WCF Web service with WCF method vs with Soap header

My WCF Webservice provide all data manipulation operations and my ASP .Net Web application present the user interface. I need to pass user information with many wcf methods from ASP .Net app to WCF app. Which one in is better approach regarding…
Dharmendra Verma
  • 57
  • 1
  • 7
0
votes
1 answer

Create Dynamic Delegate WCF TransparentProxy

I am trying to write generic method that all wcf proxy methods go through this method and caches return value. Generic method is public T CallService(Delegate del, object[] args) { // begin caching logic // ... // if value is cached,…
Oytun Yilmaz
  • 101
  • 2
  • 9
0
votes
1 answer

Encryption of WCF traffic without X.509 or Windows authentication

I'm looking at how to set up a secure connection between a WCF service, and a non-.NET client running on RHEL, so I expect Windows authentication is not feasible. This is just for an internal network, so I'm hoping to avoid the management headaches…
Hydrargyrum
  • 3,378
  • 4
  • 27
  • 41
0
votes
1 answer

WCF TransportCredentialOnly security breaks when used with FQDN

On the same intranet-only box I have an IIS 8 hosted website that makes calls to a second IIS-hosted WCF service. Windows authentication enabled for both applications (all others disabled) Website is hosted under a domain service account. WCF…
Andrew Keller
  • 3,198
  • 5
  • 36
  • 51
0
votes
1 answer

WCF Security :The service certificate is not provided. Specify a service certificate in ServiceCredentials

I have implemented WCF service with Custom validation by overloading 'UserNamePasswordValidator' and using message security but on my devlopment machine there is no certificate but on LIVE environment there is SSL certificate. So i hosted the…
Yogesh Ghatge
  • 1
  • 1
  • 2
0
votes
1 answer

Set username credential for a new channel without creating a new factory

I have a backend service and front-end services. They communicate via the trusted subsystem pattern. I want to transfer a username from the frontend to the backend and do this via username credentials as found…
Ramon Smits
  • 2,482
  • 1
  • 18
  • 20
0
votes
1 answer

How can I enable Security in LogReceiverService (NLog)

I have to make a centralized log repository and I decided to mount a WCF service implementing NLog's LogReceiverService (through wsHttpBinding). I followed this topic where I found a working example (there is a working code at bitbucket). Ok, now…
Gabriel Espinoza
  • 385
  • 1
  • 18
0
votes
1 answer

Silverlight WCF with two-way SSL security certificates

I would like to implement a server - client software with the following security requirements: WCF-Services need to be secured with SSL and Certificates for both, the server and the client Client certificates need to be generated programmatically…
Daniel Lang
  • 6,819
  • 4
  • 28
  • 54
0
votes
1 answer

ConfigurationSection deserialisation to concrete type

I have a config file with IdentityConfiguration information in it which I am using for securing my WCF Services e.g.
MrEdmundo
  • 5,105
  • 13
  • 46
  • 58
0
votes
1 answer

How to get a token from a WCF service

My organization hosts a WCF service where external users can send us data. We have several senders who are fully operational but I am assisting one who is having trouble. The sender is not using Microsoft technologies so I am assisting them in…
Jacob
  • 453
  • 5
  • 17
0
votes
1 answer

WCF to SharePoint 2013 - Token for User not WCF Application ID

We're using a WCF service to connect to SharePoint 2013 for updating lists. We create a client token on our web page which calls the WCF service and our issue is that updates are logged in SharePoint as being by the "WCF Application ID" (the…
ShawOfMordor
  • 75
  • 1
  • 6
0
votes
1 answer

How do you override the WCF AuthenticationService IsLoggedIn() method?

I have three current thoughts on how to do this: re-implement AuthenticationService, which uses lots of internal constructors and internal helpers, implement custom IIdentity and IPrincipal types and somehow hook these into…
user29439
1 2 3
85 86