Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
HomeAnnouncementsFree MagazinesWhite PapersSubmit Content
Discussion GroupsASP.NETWindows FormsLanguages.NET FrameworkVisual Studio.NET
Articles.NET FrameworkASP.NETToolsWindows Forms
.NET DirectoryOpen Source ProjectsUser GroupsWeb Resources
Related Topics
Visual Basic 6SQL ServerMS AccessOther DB ProductsMS Server ProductsMore Topics ...
.NET Forum / ASP.NET / Web Services / November 2005

Tip: Looking for answers? Try searching our database.

Server policy : UserNameOverTransportAssertion WSE 3.0

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
Henrik Skak Pedersen - 23 Nov 2005 12:13 GMT
Hi,

I have created a server policy (UserNameOverTransportAssertion, Client
Token, UserNameToken) and then I have added the Policy attribute to my
class:

[Policy("ServicePolicy")]

Now, I thought that I had to send a UserName to the web service, but I am
still able to call my web service and get the result back with out
specifying any tokens. Why is that?

Thanks

Henrik.
Reply to this Message
Steven Cheng[MSFT] - 24 Nov 2005 12:08 GMT
Hi Henrik,

Welcome to Webservice newsgroup.
As for the UsernameOverTransport Security Assertion,  addition to apply the
policy on our webservice, we also need to specify the authroization setting
in the policy. For example, we need to deny all the anonymous users so that
the client caller must provide UsernameToken  (bydefault the serverside
will authenticate the username token against the windows security authority
(need clear Text password...)

Here is an example policy file which using UsernameOverTransport assertion
and deny all anonymous clients:

======================
<policies xmlns="http://schemas.microsoft.com/wse/2005/06/policy">
 <extensions>
   <extension name="usernameOverTransportSecurity"
type="Microsoft.Web.Services3.Design.UsernameOverTransportAssertion,
Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
PublicKeyToken=31bf3856ad364e35" />
   <extension name="requireActionHeader"
type="Microsoft.Web.Services3.Design.RequireActionHeaderAssertion,
Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
PublicKeyToken=31bf3856ad364e35" />
   <extension name="authorization"
type="Microsoft.Web.Services3.Design.AuthorizationAssertion,
Microsoft.Web.Services3, Version=3.0.0.0, Culture=neutral,
PublicKeyToken=31bf3856ad364e35" />
 </extensions>
 <policy name="ServicePolicy">
   <authorization>
     <allow role="VS2005TeamSuite\WSEGroup" />
     <deny user="*" />
   </authorization>
   <usernameOverTransportSecurity />
   <requireActionHeader />
 </policy>
</policies>
==========================

Hope helps. Thanks,

Steven Cheng
Microsoft Online Support

Signature

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

Reply to this Message
Henrik Skak Pedersen - 24 Nov 2005 15:50 GMT
Hi Steven,

Thank you very much for you reply that solved my request.

Thanks

Henrik
> Hi Henrik,
>
[quoted text clipped - 48 lines]
> (This posting is provided "AS IS", with no warranties, and confers no
> rights.)
Reply to this Message
Steven Cheng[MSFT] - 25 Nov 2005 00:50 GMT
Thanks for your followup Henrik,

glad that the suggest helped you resolving the problem.

Have a good day!

Regards,

Steven Cheng
Microsoft Online Support

Signature

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)


--------------------
From: "Henrik Skak Pedersen" <skak@community.nospam>
References: <OFRgEdC8FHA.3232@TK2MSFTNGP12.phx.gbl>
<DvyHU$O8FHA.3764@TK2MSFTNGXA02.phx.gbl>
Subject: Re: Server policy : UserNameOverTransportAssertion WSE 3.0
Date: Thu, 24 Nov 2005 16:50:14 +0100
Lines: 63
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
X-RFC2646: Format=Flowed; Original
Message-ID: <#fs4F7Q8FHA.3752@tk2msftngp13.phx.gbl>
Newsgroups: microsoft.public.dotnet.framework.webservices.enhancements
NNTP-Posting-Host: 80.63.142.94
Path: TK2MSFTNGXA02.phx.gbl!TK2MSFTNGP08.phx.gbl!tk2msftngp13.phx.gbl
Xref: TK2MSFTNGXA02.phx.gbl
microsoft.public.dotnet.framework.webservices.enhancements:7728
X-Tomcat-NG: microsoft.public.dotnet.framework.webservices.enhancements

Hi Steven,

Thank you very much for you reply that solved my request.

Thanks

Henrik
> Hi Henrik,
>
[quoted text clipped - 48 lines]
> (This posting is provided "AS IS", with no warranties, and confers no
> rights.)
Reply to this Message

Free Magazines

Get these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...

Oracle MagazineNetwork ComputingComputer WorldBio-IT WorldeWeekInformation WeekInfosecurity
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.