Questions tagged [wcf-security]

Questions related to the authentication and authorization services for Windows Communication Foundation (WCF) applications

Windows Communication Foundation is Microsoft's implementation of the WS-* web service specifications. Its security functionality mainly deals with authentication, authorization and secure over-the-wire transmission of user credentials.

When setting up WCF Security for an application, the following parameters need to be configured:

The type of credential required, e.g. NTLM, plaintext, or certificate authentication
The security mode: transport mode (e.g. SSL), message mode (SOAP message security), or a combination of both
Which endpoint(s) are protected

Once a client successfully connects to an endpoint protected with WCF Security, the server application can examine the security context to determine the identity of the client and to determine its authorizations (which need to be configured separately).

1285 questions

votes

1 answer

Catch all WCF exceptions in a single catch statement

Is it possible to catch all WCF statements in a single catch statement? - i.e on the code below i have 2 catches for WCF but my codes reaction to both is the same so i dont want to duplicate code Will both WCF catches, catch ALL WCF errors or am i…

c# wcf wcf-security

asked Apr 12 '14 at 12:00

user1438082

2,740
10
48
82

votes

1 answer

Security problem - allowing authorised authentication without password

This is our setup - our customers will have a database server with our database on and multiple clients running our frontend. We have some WCF services to allow the clients to request info from the database and each WCF session is authenticated with…

wcf security authentication wcf-security

asked Feb 17 '10 at 10:55

Mark Pim

9,898
7
40
59

votes

1 answer

n-tier entity framework generated code and wcf authentication http://ntieref.codeplex.com

Hi created my service using http://ntieref.codeplex.com/ n-tier entity framework. The service the generator created uses wcf and wsHttpBinding. It uses windows authentication and the program created works fine when the user is logged in the Domain…

wcf-security n-tier-architecture

asked Mar 26 '14 at 00:13

voulgeor

votes

1 answer

WCF can't call validate method in UserNamePasswordValidator

I fallowed a tutorial to secure wcf service with username and password, and with certificate. I created and install certificate using pluralsight's self-Cert tool. and override validate method which is inherit from UserNamePasswordValidator.…

wcf wcf-security

asked Mar 25 '14 at 07:41

vikrantx

votes

1 answer

Implement transport security on my WCF service with custombinding on HTTP

I am new to WCF security . I am trying to implement transport security on my WCF service. We are using custombinding on HTTP. Can someone please suggest how can we do that? …

wcf soap soa wcf-binding wcf-security

asked Mar 20 '14 at 16:06

Piyush

votes

1 answer

Message Security with a User Name Client

The MSDN link says that X.509 certificates are used to authenticate a service. My questions are given below: What is the purpose of using certificates while opting for Message security with client credential of UserName? Is it not possible to use…

c# .net wcf certificate wcf-security

asked Mar 18 '14 at 17:01

arjun

votes

1 answer

AuthorizationManager based on service invocation parameters

I'm currently developing my own AuthorizationManager, it looks something like that: public class MyAuthorizationManager : ServiceAuthorizationManager { static bool initialize = false; public override bool CheckAccess(OperationContext…

wcf-security authorizationmanager

asked Feb 11 '10 at 17:56

NAADEV

votes

1 answer

PolicyException: None of the policy alternatives can be satisfied in WCF Service Call

I have created web service client using Apache axis 1.4. The wcf service i am accessing is STS service which required AppliesTo Parameter and its return SAML token. I have go through various blog and website while searching and some how i came to…

java wsdl axis wcf-security

asked Mar 17 '14 at 09:22

RizN81

1,009
15
26

votes

1 answer

Svcutil.exe metadata showing incorrect path in the browser

We created a wcf service with two endpoints one for http for internal users and the other for https for external users. When the service is viewed in the browser using https , svcutil.exe metadata path is pointing to http instead of https.…

wcf wcf-data-services wcf-binding wcf-ria-services wcf-security

asked Mar 07 '14 at 06:42

user3306829

votes

1 answer

WCF Web Service with mutual authentication certificates failing on client chain trust validation

I'm developping a proof of concept for a WCF web service using SSL and certificates for mutual authentication. So, I have 2 certificates both provided by a valid certification authority (these are production certificates, not development). Here are…

wcf ssl-certificate wcf-security mutual-authentication

asked Mar 05 '14 at 06:49

Peltchag

votes

1 answer

Exposing only some method to user depending on authentication/authorization

Just learning WCf Security, and searched about how to expose only some methods to my client on the basis of authentication/authorization. 1) Like for admin application, service should expose all methods. But for User application same Service should…

c# wcf wcf-security

asked Feb 27 '14 at 13:52

donstack

2,557
3
29
44

votes

1 answer

WCF Routing based on content

Say, I have 4 servers, one publicly visible (A), others (B,C and D) only visible to the one (A). Where B, C and D are identical services, each in their own company. Can I route a call from a client to server A through to servers B, C or D depending…

c# wcf encryption wcf-security

asked Feb 21 '14 at 09:35

Stijn Tallon

votes

0 answers

WCF Discovery with multithreading - The caller was not authenticated by the service

I try to implement WCF Discovery service using multithreading. static void InvokeService() { var Services = discoveryClient.Find(new FindCriteria(typeof(WCFDiscoveryContract.IService1))); discoveryClient.Close(); …

multithreading wcf wcf-binding wcf-security

asked Feb 17 '14 at 05:05

senthilraja

votes

2 answers

There was no channel actively listening at wcf

I have been working on a WCF service which is developed in VS 2008 and hosted in Windows Server 2008, IIS 7.0, When I host this service in my local environment, its working fine but when i host this service in production site its not working. In…

wcf wcf-security wcf-wshttpbinding

asked Feb 10 '14 at 10:18

Chandra

votes

1 answer

How to use WCF Message Security with external clients

Here's my scenario: I need to host a WCF web service app that will be consumed by multiple customers. Each customer is responsible for their own client app, and they will be building their client apps with different technologies. It's likely that…

wcf wcf-security

asked Jan 15 '14 at 21:11

Stoop

1,235
3
17
23

Prev 1 2 3

…

85 86 Next