by Keyvan Nayyeri via Keyvan Nayyeri on 12/13/2006 6:57:00 PM
It's possible to use ASP.NET membership and role providers for authentication and authorization in Windows Communication Foundation.
To enable ASP.NET membership for authentication you need to modify service configuration file and add appropriate items for ASP.NET membership to it then set Windows Communication Foundation configurations to use it.
For example here I add connection string for my SQL Server database to use its membership data for authentication:
<connectionStrings>
<remove name="MyConnection" />
<add name="MyConnection"
connectionString="Data Source=KEYVAN-XP;Initial Catalog=HelloMembership;Integrated Security=True"
providerName="System.Data.SqlClient" />
</connectionStrings>
Now I add my membership configurations to service configuration file:
<system.web>
<membership defaultProvider="SqlMembershipProvider">
<providers>
<clear />
<add
name="SqlMembershipProvider"
type="System.Web.Security.SqlMembershipProvider"
connectionStringName="MyConnection"
applicationName="/HelloService"
enablePasswordRetrieval="false"
enablePasswordReset="false"
requiresQuestionAndAnswer="false"
requiresUniqueEmail="true"
passwordFormat="Hashed" />
</providers>
</membership>
<compilation debug="true"/>
</system.web>
Then I use wsHttpBinding and set its mode to Message then apply UserName credential type for it to apply UserName authentication:
<bindings>
<wsHttpBinding>
<binding name="MyBinding">
<security mode="Message">
<message clientCredentialType="UserName"/>
</security>
</binding>
</wsHttpBinding>
</bindings>
And finally I set my UserName authentication to use ASP.NET membership by adding a <userNameAuthentication /> element to my service behavior. First it's necessary to set userNamePasswordValidationMode attribute to MembershipProvider then use ASP.NET membership whose configurations are used before to set membershipProviderName attribute.
<behaviors>
<serviceBehaviors>
<behavior name="MyBehavior">
<serviceMetadata httpGetEnabled="true" />
<serviceCredentials>
<userNameAuthentication userNamePasswordValidationMode="MembershipProvider"
membershipProviderName="SqlMembershipProvider"/>
</serviceCredentials>
</behavior>
</serviceBehaviors>
</behaviors>
So after these changes my service configuration file looks like this:
<?xml version="1.0"?>
<configuration>
<system.serviceModel>
<services>
<service name="MyService.Hello" behaviorConfiguration="MyBehavior">
<endpoint contract="MyService.IHello" binding="wsHttpBinding"
bindingConfiguration="MyBinding" />
</service>
</services>
</system.serviceModel>
</configuration>
Now I can use UserName authentication on client side to access to my service methods by passing ASP.NET membership credentials to client proxy.
Second usage of ASP.NET providers in Windows Communication Foundation is for authorization.
To implement this for my example, I add ASP.NET configuration for role provider:
<roleManager enabled ="true" defaultProvider ="SqlRoleProvider" >
<add name ="SqlRoleProvider"
type="System.Web.Security.SqlRoleProvider"
connectionStringName="MyConnection" />
</roleManager>
At this point I use <serviceAuthorization /> element under <behavior /> element to configure authorization for my Windows Communication Foundation service. By setting principalPermissionMode attribute to UseAspNetRoles and roleProviderName attribute to appropriate role provider name I can enable ASP.NET role provider authorization for my Windows Communication Foundation service.
<serviceAuthorization principalPermissionMode="UseAspNetRoles"
roleProviderName="SqlRoleProvider">
</serviceAuthorization>
At the end my Web.Config is this:
Now playing: Eric Clapton - Revolution
Original Post: Use ASP.NET Membership and Role Providers in Windows Communication Foundation
The content of the postings is owned by the respective author. CSharpFeeds is not responsible for the contents of the postings. This site is automatically generated and cannot be reviewed for abusive content. If you find abusive content on CSharpFeeds, please contact us. Designated trademarks and brands are the property of their respective owners. All rights reserved.
