Re: Please Help me- Creating Custom tokens

From: Sumaira Ahmad (sumaira.ahmad_at_gmail.com)
Date: 10/20/04 

Date: 19 Oct 2004 19:41:48 -0700

But i guess that deals with the client sending a custom token obtained
from a token issuer and using that to encrypt and sign the requests..
But the problem i want to solve is slightly different since I want to
send an encrypted token in the header of the response message . The
token created by the server has some user info such as his first name
last name , etc. Will those samples help me??
I did have a look at it once, but was wondering if there was an easy
way of implementing it.. Looked pretty complicated to me...
So u think that can help my implementation??

Thanks,
Sumaira

"Softwaremaker" <msdn@removethis.softwaremaker.net> wrote in message news:<uVKjDoitEHA.3448@TK2MSFTNGP09.phx.gbl>...
> If you are looking for some custom security token implementations, you can
> check out some of the excellent samples that came with the WSE2.0 download
>
> CustomBinarySecurityToken and the CustomXMLSecurityToken samples.
>
> Some of them uses an implementation of the SCT (SecureContextToken) as
> outlined in WS-Trust.
>
> --
> Thank you.
>
> Regards,
> Softwaremaker
> http://www.softwaremaker.net/blog
>
> =========================================
>
> "Sumaira Ahmad" <sumaira.ahmad@gmail.com> wrote in message
> news:1627c5ae.0410191230.1e4729e8@posting.google.com...
> > Hi,
> >
> > Please help me know how to do this..
> >
> > In ASP.NET Web Application/We Server , I want to send back an
> > encrypted token from the server to the client. This encrypted token
> > will contain information such as: Username, groups that he belongs to,
> > timestamp and expiry time. The client would just store this token and
> > send it to the server the next time when it requests a page instead of
> > sending a Username token and getting it authenticated and authorized
> > again.
> > Can someone please tell me how to create an encrypted token on the
> > server and send it back in the response Soap Header??
> >
> > Please.. Any help would be highly appreciated.
> >
> > Regards,
> > Sumaira

Relevant Pages

  • Re: A cryptography solution for a client/server winforms app
    ... good idea if you want to learn crypto. ... you control both the client and server, you don't even need to use a ... code the client to ignore certificate trust errors. ... encrypt the memory stream. ...
    (microsoft.public.dotnet.security)
  • Re: File ENcryption Problem Detail
    ... > In addition, when u encrypt remotely (client to server), which users ... We can encrypt remotely (client to server, ... >>> it is able to encrypt file locally on the DC, ...
    (microsoft.public.win2000.security)
  • Re: A cryptography solution for a client/server winforms app
    ... You could use a self-signed cert deployed with the server ... code the client to ignore certificate trust errors. ... generate a hash value for the data in the memory stream. ... encrypt the memory stream. ...
    (microsoft.public.dotnet.security)
  • Re: Password encryption
    ... I have source code to the database including ODBC server and ... can encrypt the password before passing it to us so we can remain ignorant ... support for AD integration so that customers can logon to our database ... i.e. they enter it into the ODBC/JDBC client. ...
    (microsoft.public.windows.server.active_directory)
  • Re: A cryptography solution for a client/server winforms app
    ... You could use a self-signed cert deployed with the server ... code the client to ignore certificate trust errors. ... generate a hash value for the data in the memory stream. ... encrypt the memory stream. ...
    (microsoft.public.dotnet.security)