Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
HomeAnnouncementsFree MagazinesWhite PapersSubmit Content
Discussion GroupsASP.NETWindows FormsLanguages.NET FrameworkVisual Studio.NET
Articles.NET FrameworkASP.NETToolsWindows Forms
.NET DirectoryOpen Source ProjectsUser GroupsWeb Resources
Related Topics
Visual Basic 6SQL ServerMS AccessOther DB ProductsMS Server ProductsMore Topics ...
.NET Forum / ASP.NET / Web Services / April 2006

Tip: Looking for answers? Try searching our database.

Direct authentication with UserrNameToken over certificate

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
YC - 30 Mar 2006 10:45 GMT
Hi,

After readfing the Web Security Guide, I tried to implement ditrect
authentication using a UsernameToken by implementing the
usernameForCertificateSecurity policy.
I have a web application client which communicates with a service. I have a
login page where the client need to provides it's credentials.

My question is - should I use the usernameForCertificateSecurity policy all
over my web application when calling the service?
I want to maintain the authetication of the client who's calling the
service, and if  I understood correctly, when using
usernameForCertificateSecurity, I authenticate the client using it's
credentials and after I authethenticate the client, a derieved key is created
and each call to the service is authenticated using this derived key.

Thanks

Yoav
Reply to this Message
Pablo Cibraro - 30 Mar 2006 20:02 GMT
Hi YC,

That depends on the secureConversation setting.
If the secureConversation flag is turned on in your UsernameForCertificate
assertion, it will work as you said,
the client is authenticated only the first time and then a session key is
used. (As long, you use the same proxy instance).
If you create a new proxy instance each time or secureConversation is turned
off, then the user client will be authenticated for each message.

Does this anwser your question ?.

Regards,
Pablo Cibraro
http://weblogs.asp.net/cibrax

> Hi,
>
[quoted text clipped - 18 lines]
>
> Yoav
Reply to this Message
YC - 02 Apr 2006 08:51 GMT
Hi,
thanks for your reply.
I don't exactly understand this process in full.
I'll look into it.

Thanks

Yoav

> Hi YC,
>
[quoted text clipped - 34 lines]
> >
> > Yoav
Reply to this Message
Pablo Cibraro - 03 Apr 2006 20:33 GMT
Hi YC,

You can find an article about this topic in my blog,

http://weblogs.asp.net/cibrax/archive/2006/02/21/438670.aspx

Regards,
Pablo Cibraro.

> Hi,
> thanks for your reply.
[quoted text clipped - 46 lines]
>> >
>> > Yoav
Reply to this Message
YC - 04 Apr 2006 07:51 GMT
Thanks Pablo,
I'll look into it.

Yoav

> Hi YC,
>
[quoted text clipped - 55 lines]
> >> >
> >> > Yoav
Reply to this Message

Free Magazines

Get these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...

Oracle MagazineNetwork ComputingComputer WorldBio-IT WorldeWeekInformation WeekInfosecurity
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.