Welcome to MSDN Blogs Sign in | Join | Help

December 2006 - Posts

TransportWithMessageCredentials - I need to know who is knocking on my door.

The point to be noted here is that even though the security facts of comminication like integrity and confidentiality is taken care of by the transport we might not get enough information from the client as to "Who are you?". Now for this case you need Read More...
Posted Saturday, December 30, 2006 9:28 PM by Sajay | 3 Comments
Filed under:

Attachment(s): TransportWithMessageCredentials - UserName - Windows.zip

Adding a Message Header without using a MessageContract

Using Message contracts is quite a straight forward way of creating and adding message headers.But then again you might just want to add a header without going downt that route like this post by Kenny . You generally come across 2 scenarios where you Read More...
Posted Saturday, December 30, 2006 8:44 AM by Sajay | 2 Comments
Filed under:

Checking the SIDs in the WindowsClaimSet

In continuation to my post of SAM vs PP , we concluded that to avoid fractured policy checking we can still check if the user belongs to a particular group by checking the occurence of an SID in the WindowsClaimSet that he submits to the service. One Read More...
Posted Wednesday, December 27, 2006 11:06 PM by Sajay | 1 Comments
Filed under:

ServiceAuthorizationManager and PrincipalPermission

You may face a problem when trying to check for Principal permission and demand in the CheckAccessCore of the SerivceAuthorizationManager and you might see a security exception. This is primarily because the threads principal is not set when this demand Read More...
Posted Friday, December 22, 2006 8:33 AM by Sajay | 1 Comments
Filed under: ,

Web Hosted Sample with UserNamePassword Supporting Token

In the Passing a UserName as a supporting token post was pretty much a single console app to demo the basic flow. This sample is a bit more richer and shows a web hosted service that requires the usernameSecurity token. To configure it please create a Read More...
Posted Tuesday, December 12, 2006 11:31 AM by Sajay | 1 Comments
Filed under:

Attachment(s): UPSupportingToken.zip

Passing a UserName as a supporting token.

Firstly i would like to thank Brent Schmaltz who helped me solve this problem. When trying to secure messages might require more than than the primary token to identity the client. We can then resort to sending additional information that would help in Read More...
Posted Tuesday, December 12, 2006 4:13 AM by Sajay | 3 Comments
Filed under:

Disabling Anonymous Authenticaiton on IIS for Message Security and Impersonation

When hosting WCF services in IIS we would ideally want to disable anonymous authenticaion on a website when there are other resources or type of endoints being hosted on that site. The solution to this is not quite obvious.The problem basically is that Read More...
Posted Friday, December 01, 2006 7:10 AM by Sajay | 1 Comments
Filed under: ,
 
Page view tracker