How to configure secure RESTful services with WCF using username/password + SSL

Question

I\'m looking to write a config file that allows for RESTful services in WCF, but I still want the ability to \'tap into\' the membership provider for username/password authe

Answer 1

I agree with Darrel that complex REST scenarios over WCF are a bad idea. It just isn't pretty.

However, Dominick Baier has some good posts about this on his least privilege blog.

If you'd like to see WSSE authentication support with fallback to FormsAuthenticationTicket support on WCF, check out the source code of BlogService.