Lost in history

Blogs focused on WWSAPI: the new native web services stack from Microsoft

  • Lost in history

    WWSAPI to WCF interop 2: default BasicHttpBinding

    • 4 Comments
    WCF's BasicHttpBinding is conformant to Basic Profile 1.1. That is, BasicHttpBinding uses SOAP version 1.1 and no WS-Addressing. The message intent is carried in the SOAPAction header. If you have read my previous post , you’ve probably realized that...
  • Lost in history

    WWSAPI to WCF interop 3: BasicHttpBinding with transport security

    • 4 Comments
    Transport security means the message integrity and confidentiality are provided at transport layer. For http transport, this means https. In WCF’s BasicHttpBinding, BasicHttpSecurityMode.Transport provides transport security. To use security in WWSAPI...
  • Lost in history

    WWSAPI to WCF interop 6: NetTcpBinding with transport security

    • 4 Comments
    NetTcpBinding provides a more efficient way to send/receive SOAP messages than HTTP does. The SOAP envelopes are transferred in binary format and an XML dictionary is built over the TCP session to help further reduce the payload size. NetTcpBinding supports...
  • Lost in history

    WWSAPI to WCF interop 4: WSHttpBinding with username over transport security

    • 3 Comments
    WWSAPI doesn’t support full message mode security (where security negotiation happens at SOAP message level and parts of the envelope are signed and encrypted using XML signature and XML encryption) in Win7 time frame. This means the default WSHttpBinding...
  • Lost in history

    WWSAPI to WCF interop 5: WSFederationHttpBinding with mixed mode security

    • 3 Comments
    WCF endpoints with WSFederationHttpBinding accept SAML tokens issued by trusted Security Token Services (STS, the Issuing Party, or IP). The first thing that should be noted with WSFederationHttpBinding is that secure conversation (specifically, the February...
  • Lost in history

    403 Forbidden due to client certificate issue

    • 3 Comments
    Just when I thought I had seen all possible 403 Forbidden errors and could pinpoint the 403 issues without looking into traces, I found myself surprised by another 403 error. I was testing a WWSAPI client to WCF server interop scenario. Only this time...
  • Lost in history

    One-time set up for WWSAPI security examples

    • 3 Comments
    Nikola asked me to write a post on how to set up machine to run our security examples. Here it goes. To run WWSAPI security examples (like the one doing Basic authentication over SSL ), you need to set up the client and server certificates for SSL...
  • Lost in history

    WWSAPI to WCF Interop 7: HTTP header authentication (part 1) - comparison

    • 2 Comments
    Just like WCF, WWSAPI supports Basic, Digest, NTLM and Negotiate HTTP header authentication (If you are not familiar with HTTP header authentication, you can read more details about it at Nicholas Allen’s HTTP authentication post ). The two implementations...
  • Lost in history

    WWSAPI to WCF Interop 7: HTTP header authentication (part 2) - used in WSHttpBinding with transport security

    • 2 Comments
    In WCF’s standard bindings, HTTP header authentication can be used in WSHttpBinding with security mode Transport. In this security mode, the client credential type can be set to either Basic, Digest, Ntlm or Windows (Negotiate scheme) to enable HTTP header...
  • Lost in history

    WWSAPI to WCF interop 8: invalid XML characters (part 1)

    • 2 Comments
    Although all Unicode characters can be carried in XML document, not all characters are considered legal according to XML 1.0 spec , the version used by SOAP and supported by WWSAPI. As you can see in the production copied below, ASCII characters under...
  • Lost in history

    One thought on testing

    • 2 Comments
    I have been in the testing discipline for almost 8 years. Over the years there have been different forces to push me into development. Somehow I stayed, despite the fact many people outside and even inside Microsoft don’t give much regard to testers....
  • Lost in history

    WWSAPI RC bits for downlevel platforms are available!

    • 2 Comments
    Not many people are aware of our commitments to ship WWSAPI to downlevel platforms. Nikola just sent out an email annoucing the availability of the RC bits for downlevel platforms: https://connect.microsoft.com/WNDP/Downloads/DownloadDetails.aspx?DownloadID...
  • Lost in history

    WWSAPI to WCF interop 1: WSHttpBinding with no security

    • 2 Comments
    WCF provides a number of standard bindings, each targeting a specific usage scenario. WSHttpBinding is for the mainline Internet web services scenario. It uses the newer SOAP version 1.2 and WS-Addressing version 1.0 and enables a wide range of security...
  • Lost in history

    WWSAPI to WCF interop 8: invalid XML characters (part 2)

    • 1 Comments
    In part 1 of this topic, I explained that some Unicode characters would be rejected by WWSAPI’s XML reader and writer because they are not considered legal in XML spec. There is an XML reader property and an XML writer property to allow such characters...
  • Lost in history

    Common WWSAPI errors: addressing version mismatch

    • 1 Comments
    WWSAPI supports two WS-Addressing versions: the existing W3C recommendation version ( 1.0 ) and the older 2004/08 version ( 0.9 ). WS-Addressing defines a set of SOAP headers to describe the message recipient, targeted action and some other basic messaging...
  • Lost in history

    WWSAPI to WCF interop 10: WsUtil.exe, the silver bullet

    • 1 Comments
    In my previous post on interoperating with WCF BasicHttpBinding endpoint , I explained that you had to set the channel properties to match SOAP version and addressing version on the server side. Wouldn’t it be great if you don’t have to do all that? That...
  • Lost in history

    HTTP header authentication gotcha

    • 1 Comments
    So I was testing WWSAPI client to ASMX interop. After getting the basic Hello World scenario working, I decided to require Windows authentication on the web application and impersonate the client identity. Then I reran the client without changing the...
  • Lost in history

    A simple way to run the WWSAPI Kerberos over SSL samples

    • 1 Comments
    The Kerberos over SSL samples (like the calculator one ) demonstrate WWSAPI mixed mode security that matches the WCF’s KerberosOverTransport authentication mode. In this mode, the Kerberos AP-REQ ticket is wrapped in a WS-Security header for client and...
  • Lost in history

    One note about running the examples using HTTP

    • 1 Comments
    It turns out that with the example code as is, starting a server at an HTTP or HTTPS address does not require the process to be run as an admin (elevated on Vista and Win7). No namespace needs to be reserved either. This is because the code uses localhost...
  • Lost in history

    WWSAPI to WCF interop 9: secure conversation bootstrapped by Kerberos AP-REQ token

    • 1 Comments
    In my post on WWSAPI federation support , I explained how to set up secure conversation on the WWSAPI client to work with a WCF server using WSFederationHttpBinding. In this post, I’ll show how to use secure conversation without federation. Secure conversation...
  • Lost in history

    More on HTTP header authentication

    • 1 Comments
    My previous post on header authentication comparison between WWSAPI and WCF mentioned the impersonation level. Here is a bit more detail as people still seem to be caught by surprise due to this difference. I mentioned that WCF client could set the impersonation...
  • Lost in history

    LiveID support in WWSAPI on Win7

    • 1 Comments
    In Windows 7, LiveID can be used with WWSAPI in two scenarios: 1. SSPI over TCP ( WS_TCP_SSPI_TRANSPORT_SECURITY_BINDING ) with the default SPNEGO package : on both client and server 2. HTTP Negotiate header authentication ( WS_HTTP_HEADER_AUTH_SECURITY_BINDING...
  • Lost in history

    Back to work.

    • 1 Comments
    It's my first day at work in 2009 after a long vacation. I plan to continue the WWSAPI to WCF interop blogging, but I will also post entries on some tricks and tips of using WWSAPI in general. I wish they can be helpful.
  • Lost in history

    Channel 9 video on WWSAPI

    • 1 Comments
    In case you haven't see it, check out the Channel 9 video on WWSAPI .
  • Lost in history

    On vacation for the rest of the month

    • 0 Comments
    I'll go back to China for the first time in 10 years. It's going to be an exciting time. I'll climb the Great Wall for the first time with my daughters to end my boycott of the Chinese symbol. The Forbidden City as well. After reading the history of Ming...
Page 1 of 2 (32 items) 12