发表新帖
发表新帖

How to configure security when calling WCF Service from .Net 2.0 Client

前端 未结
关注
5 638
闹比i
闹比i 2020-12-08 03:37

I have a WCF service up and running and am able to communicate between the service and a .Net 2.0 Client using basicHttpBinding.

I now need to lock down the WCF se

5条回答
  • 鱼传尺愫
    鱼传尺愫 (楼主)
    2020-12-08 03:45

    Here is what I ended up doing which seemed to be the simplest solution in our situation, which is pretty small scale with only a handful of web services exposed:

    1. Secured the transport with SSL
    2. Clients first login to the web service by calling a Login method on the web service. If the login succeeds, it returns an encrypted FormsAuthenticationTicket to the client.
    3. Clients must then supply the forms authentication ticket with each web service call. Each method checks if the ticket is valid and if so it does its work. If the ticket has expired or is invalid, clients must re-authenticate.

    Hope that helps someone...

    0 讨论(0)
 看不清?
提交回复
热议问题