Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
HomeAnnouncementsFree MagazinesWhite PapersSubmit Content
Discussion GroupsASP.NETWindows FormsLanguages.NET FrameworkVisual Studio.NET
Articles.NET FrameworkASP.NETToolsWindows Forms
.NET DirectoryOpen Source ProjectsUser GroupsWeb Resources
Related Topics
Visual Basic 6SQL ServerMS AccessOther DB ProductsMS Server ProductsMore Topics ...
.NET Forum / ASP.NET / Web Services / October 2004

Tip: Looking for answers? Try searching our database.

WSE2 Policy and PolicyEnforcementSecurityTokenCache

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
Maksim Izbrodin - 04 Oct 2004 18:17 GMT
WSE2 documentation says that "SOAP message senders can add security tokens to
either the PolicyEnforcementSecurityTokenCache or directly to the SoapContext
for the SOAP message when policy is used for outgoing SOAP messages." What is
the difference whether I use PolicyEnforcementSecurityTokenCache or
SoapContext when adding security tokens in my web service client? Which one
should I use and why?

Thanks.
Reply to this Message
Hervey Wilson [MSFT] - 06 Oct 2004 07:41 GMT
> WSE2 documentation says that "SOAP message senders can add security tokens to
> either the PolicyEnforcementSecurityTokenCache or directly to the SoapContext
> for the SOAP message when policy is used for outgoing SOAP messages." What is
> the difference whether I use PolicyEnforcementSecurityTokenCache or
> SoapContext when adding security tokens in my web service client? Which one
> should I use and why?

The Policy engine obeys instructions encoded as assertions. When these
assertions refer to a security token, the policy engine will try to find
a matching token and use it to perform either the sign or encrypt
operation and, optionally, inject the token into the message.

When searching for a token, the policy engine will look in the
SoapContext for the security token and, if it is not found, will then
search the PolicyEnforcementSecurityTokenCache for a match.

This is why placing the token in either location will work; placing it
in the PolicyEnforcementSecurityTokenCache has the benefit that your
application can perform this operation one time rather than per proxy /
per message.

Signature

This posting is provided "AS IS", with no warranties, and confers no rights.

Reply to this Message
Maksim Izbrodin - 06 Oct 2004 10:11 GMT
Thank you, Hervay! Now it's clear the difference. I didn't think that the
cache was shared among all the proxies I was using in my application.
Reply to this Message

Free Magazines

Get these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...

Oracle MagazineNetwork ComputingComputer WorldBio-IT WorldeWeekInformation WeekInfosecurity
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.