Authentication/Authorization in WS-Security
From: Mike (annon_at_hotmail.com)
Date: 09/21/04
- Next message: Mike Clark: "Problem Setting Up x.509 Certificates for WSE2.0"
- Previous message: Lguger: "RE: Using dynamic url changes generated proxy"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 21 Sep 2004 09:43:15 -0400
All,
I need some clarification on how to proceed with regards to applying both
Windows Authentication and Role using a username token. Here's the
scenero...
This is an asp.net application.
1. I am using impersonation on my presentation web server. This account is
mirroed to my web services application server. I am using the default
credentials to authenticate the access to the web services box from the
presentation web server.
2. In my web method I want to use role management to control who is
authorized for each function. Because my users are stored in SQL server I
have to populate the username token and pass this with the request. I know I
have to write a custom manager to handle this because if I just send it as
is, WSE attempts to authenticate using windows which fails because my users
do not have windows accounts.
My question is - am I approaching this right? Will it even work? Can I mix
windows authentication and role management for authorization?
Thanks
Mike
- Next message: Mike Clark: "Problem Setting Up x.509 Certificates for WSE2.0"
- Previous message: Lguger: "RE: Using dynamic url changes generated proxy"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
