Re: Implementing WSE
- From: Dilip Krishnan <"dilip.krishnan AT apdiya DOT com">
- Date: Tue, 26 Apr 2005 12:59:08 -0500
Pretty simple to do this.. Create a subclass of the UsernameTokenManager.. override the Authenticate method and within that method try and compare the username and pwd with the one in the database. If they match return the client supplied pwd as the return. Else return a predefined pwd that does not match the client supplied pwd.
Another step you need to do is to configure the username token manager in the web.config.
An example of doing this can be found in [0]
[0] - http://www.devx.com/security/Article/18207/0/page/2
Nick wrote:
I am new to WSE... I have read over examples from Microsoft and others, but I am not able to get WSE to work. My client has an existing database of users and password that would like a new applicaiton. I can either use Remoting or Webservices with it. Regular web services work great and I could use them all day long but using them with WSE I get stuck. I am trying to take my existing webservice and secure it using the features of WSE such as usernametokes, message signing, and role based security (there is a table in the clients database that contains permissions/roles) Does anyone have an example of how I can do this or any articles that explain it? In theroy it sounds pretty easy and I saw an example of how to do it months ago, but at that time I was not using it at all. Also if possible can WSE do 2 way message signing such as from server -> client and client -> server? I would use windows authentication with this, but my client insists that we use the existing database of user accounts.
-- HTH Regards, Dilip Krishnan MCAD, MCSD.net dilip.krishnan AT apdiya DOT com .
- References:
- Implementing WSE
- From: Nick
- Implementing WSE
- Prev by Date: Re: Trouble after applying SP3
- Next by Date: <cryptography> settings element breaks in SP2 or SP3
- Previous by thread: RE: Implementing WSE
- Next by thread: Encryption Problem
- Index(es):
Relevant Pages
|
