RE: WCF SOAP Router Including Credentials

{\rtf1\ansi\ansicpg936\deff0\deflang1033\deflangfe2052{\fonttbl{\f0\fnil\fprq2\fcharset0 MS Sans Serif;}}
\viewkind4\uc1\pard\lang2052\f0\fs20 Hi Jimmer,
\par
\par From your descrpition, you're using the WCF "Intermediary Router" feature and currently wondering how to apply security on the messages transfered in router scenario, correct?
\par
\par As for the message routering in WCF, I think it is a XML Webservice/SOAP specific feature introducted from the WSE 3.0. WSE 3.0 also support message routering and for security, it is implemented in the following means:
\par
\par ** security header directly forwarded from client to server(ignore the intermediate router) is not supported
\par
\par ** you need to configure the security assertion(policy) for message transfering between
\par 1) client <-----> router and 2) router <-----> server
\par
\par So far, I haven't find any confirmation on the WCF which also support this kind of security setting. I'll perform some further research to see whether this kind of security is also supported in WCF.
\par
\par BTW, as you mentioned SSL, are you using https/ssl for transport security? If so, this is certainly supported only in port to port case, you can not establish ssl/https connecction across multiple nodes(client, router and server).
\par
\par I'll update you if I get any more information on this.
\par
\par Sincerely,
\par
\par Steven Cheng
\par
\par Microsoft MSDN Online Support Lead
\par
\par
\par
\par ==================================================
\par
\par Get notification to my posts through email? Please refer to
\par http://msdn.microsoft.com/subscriptions/managednewsgroups/default.aspx#notif
\par ications.
\par
\par
\par
\par Note: The MSDN Managed Newsgroup support offering is for non-urgent issues
\par where an initial response from the community or a Microsoft Support
\par Engineer within 1 business day is acceptable. Please note that each follow
\par up response may take approximately 2 business days as the support
\par professional working with you may need further investigation to reach the
\par most efficient resolution. The offering is not appropriate for situations
\par that require urgent, real-time or phone-based interactions or complex
\par project analysis and dump analysis issues. Issues of this nature are best
\par handled working with a dedicated Microsoft Support Engineer by contacting
\par Microsoft Customer Support Services (CSS) at
\par http://msdn.microsoft.com/subscriptions/support/default.aspx.
\par
\par ==================================================
\par \tab
\par
\par This posting is provided "AS IS" with no warranties, and confers no rights.
\par
\par \pard\li720 --------------------
\par From: =?Utf-8?B?SmltbWVy?= <Jimmer@xxxxxxxxxxxxxxxx>
\par Subject: WCF SOAP Router Including Credentials
\par Date: Sun, 25 Nov 2007 11:30:00 -0800
\par
\par
\par Hello,
\par
\par I've been trying to create a WCF SOAP Router Service that can forward not
\par just the message body but also any security headers set by the originator of
\par the message. The destination service I'm routing messages to uses
\par WSHttpBinding, SSL with UserName/Password client credentials. Using guidance
\par from the Technology samples I can create a router that forwards messages
\par without security credentils but not with them. Can anybody point me in the
\par right direction... should I be creating a custom channel to handle this? or
\par is there a bundle of framework classes I should use?
\par
\par Deployment scenario : Consumer connects to a router service on a DMZ (Out of
\par Domain). The router service is unable to authenticate the users of the
\par service. Router determins the correct destination service and forwards SOAP
\par message + security credentials. Destination service impersonates consumer and
\par replys to the message.
\par
\par Any help or guidance would be appreciated!
\par
\par Thanks,
\par
\par Jimmer
\par \pard
\par
\par }

Relevant Pages

  • RE: WCF on 2 machines
    ... about security verification that cause the error. ... BTW, for WCF specific problems, you can post them in webservice newsgroup ... Microsoft MSDN Online Support Lead ...
    (microsoft.public.vsnet.general)
  • RE: WCF SOAP Router Including Credentials
    ... \par Microsoft MSDN Online Support Lead ... \par Subject: RE: WCF SOAP Router Including Credentials ... \par including the clients security headers. ...
    (microsoft.public.dotnet.framework.webservices)
  • Re: Security Update KB958644 broke my wireless NIC!
    ... What anti-virus application or security suite is installed? ... If the choice boils down to installing KB958644 or having wireless access, ... you can work with free MS Support to figure out why your wireless card or router isn't working: ...
    (microsoft.public.windowsupdate)
  • RE: WCF SOAP Router Including Credentials
    ... I am currently discussing with some other WCF engineers to see whether they have any suggestion on this. ... \par Microsoft MSDN Online Support Lead ... \par Subject: RE: WCF SOAP Router Including Credentials ... \par including the clients security headers. ...
    (microsoft.public.dotnet.framework.webservices)
  • RE: WCF error: The request for security token could not be satisfied .
    ... \par From your description, you're exploring some WCF sample applications and met some problem to get the security working, correct? ... \par Microsoft MSDN Online Support Lead ... \par I am trying to use a very simple WCF service and at this point I don't need ...
    (microsoft.public.dotnet.framework.webservices)