473,385 Members | 1,351 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > .net framework > questions > pluggable security mechanism?

Join Bytes to post your question to a community of 473,385 software developers and data experts.

Pluggable security mechanism?

I'm wondering if it is possible in .NET to plug-in a custom authentication
& authorization mechanism. So, that IIS applications and Webservice would
be authenticated against this custom authentication & authorization
implementation. This implementation would authenticate a user with a
password and deliver the roles of this user in this application
(configurable application id).
Thanks a lot for your hints!
Oliver
Nov 22 '05 #1
4 1691
Check out this WSE article:
http://tinyurl.com/2gtxy
Using Role-Based Security with Web Services Enhancements 2.0
Ingo Rammer
Independent Consultant and Developer

September 2003

Applies to:
Microsoft® .NET Framework
Web Services Enhancements 2.0 for Microsoft® .NET
WS-Policy specification

Summary: How to use Web Services Enhancements 2.0 for Microsoft .NET (WSE
2.0) to integrate X.509-based WS-Security authentication with role-based
security features in the Microsoft .NET Framework. Highlights the use of
WS-Policy in WSE 2.0 to greatly simplify tasks. (26 printed pages)
--
Greetz,
Jan
__________________________________
Read my weblog: http://weblogs.asp.net/jan
<ol**********@zurich.ch> schreef in bericht
news:3f********@news.zurich-datacenter.com...
I'm wondering if it is possible in .NET to plug-in a custom authentication
& authorization mechanism. So, that IIS applications and Webservice would
be authenticated against this custom authentication & authorization
implementation. This implementation would authenticate a user with a
password and deliver the roles of this user in this application
(configurable application id).
Thanks a lot for your hints!
Oliver

Nov 22 '05 #2
Probably.

If you look in the machine.config file, IIS is configured security
mechanisms that are programmed as HttpModule components.

<httpModules>
<add name="OutputCache" type="System.Web.Caching.OutputCacheModule"/>
<add name="Session" type="System.Web.SessionState.SessionStateModule"/>
<add name="WindowsAuthentication"
type="System.Web.Security.WindowsAuthenticationMod ule"/>
<add name="FormsAuthentication"
type="System.Web.Security.FormsAuthenticationModul e"/>
<add name="PassportAuthentication"
type="System.Web.Security.PassportAuthenticationMo dule"/>
<add name="UrlAuthorization"
type="System.Web.Security.UrlAuthorizationModule"/>
<add name="FileAuthorization"
type="System.Web.Security.FileAuthorizationModule"/>
<add name="ErrorHandlerModule"
type="System.Web.Mobile.ErrorHandlerModule, System.Web.Mobile,
Version=1.0.5000.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a"/>
</httpModules>

So if you can figure out how these work, you should be able to write your
own.

<ol**********@zurich.ch> wrote in message
news:3f********@news.zurich-datacenter.com...
I'm wondering if it is possible in .NET to plug-in a custom authentication
& authorization mechanism. So, that IIS applications and Webservice would
be authenticated against this custom authentication & authorization
implementation. This implementation would authenticate a user with a
password and deliver the roles of this user in this application
(configurable application id).
Thanks a lot for your hints!
Oliver

Nov 22 '05 #3
I can write an event handler for AuthenticateRequest of IHttpModule. But
I'm not sure whether I can implement the authentication code in this event
handler or the event is just fired after successful authentication.
Nov 22 '05 #4
When will WSE 2.0 be released? There is a TP for over a half year?
Nov 22 '05 #5
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

28
Who should security issues be reported to?
by: grahamd | last post by:
Who are the appropriate people to report security problems to in respect of a module included with the Python distribution? I don't feel it appropriate to be reporting it on general mailing lists.
Python
4
Pluggable security mechanism?
by: oliver.wulff | last post by:
I'm wondering if it is possible in .NET to plug-in a custom authentication & authorization mechanism. So, that IIS applications and Webservice would be authenticated against this custom...
.NET Framework
4
persisting data for a pluggable tree
by: bob_yohan | last post by:
Hi all, I am rather new to database design and modelling concepts in general and was hoping for some advice on a problem I am trying to solve. I have designed a piece of software that creates a...
Microsoft SQL Server
2
Web Service Security
by: James | last post by:
I'm currently using a basic web service for my Windows and web clients to access a Microsoft Access database on the web server. All works fine, but I'm worried about security. Without any...
.NET Framework
0
pluggable xml
by: Richard C | last post by:
Hello, In Java the XML DOM is interface based, hence pluggable implementations. In ..NET it's been in from the start of course and is class based, but I notice there appear to be some alternate...
.NET Framework
3
IInternetProtocoll implementation (Pluggable Protocall Handler)
by: Juerg Staub | last post by:
Hi, I have implemented IInternetProtocol and IInternetProtocolRoot in my protocol handler. Whenever I try to register the instance with IInternetSession::RegisterNameSpace, I receive a...
C# / C Sharp
5
Using Asynchronouse Pluggable Protocols
by: Fredo | last post by:
I was hoping I could do something like: WebRequest req = new WebRequest("mk:whatever") to retrieve HTML help topics via the mk: protocol. But it appears that http: and file: are the only...
C# / C Sharp
4
Web service security - .NET 2.0
by: Henrik Skak Pedersen | last post by:
Hi, I have a set up where a windows client connects to a web service to retrieve a license file. The client is a consumer product which is beeing distributed to multiple locations. 1) I would...
.NET Framework
4
asp.net pluggable pages
by: Trapulo | last post by:
I've a requirenment that maybe its too hard to have, but I hope someone has a good suggestion... Basically, I need to create some pluggable pages in an asp.net application. The pages are simple...
ASP.NET
2
Design Question: Do I need a pluggable system?
by: jmDesktop | last post by:
I'm using C#, but I don't know that it matters for this question. I know that many experienced folks are on here, so sorry for being off topic. I am finally at a point where I want to and I think...
C# / C Sharp
1
Cloud Servers without Credit Card and Email Registration: A Simpler Way to Get on the Cloud
by: CloudSolutions | last post by:
Introduction: For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
General
0
Wordpress or something else?
by: Faith0G | last post by:
I am starting a new it consulting business and it's been a while since I setup a new website. Is wordpress still the best web based software for hosting a 5 page website? The webpages will be...
Content Management Systems
0
One-click Importing Excel Data into a*Database
by: ryjfgjl | last post by:
In our work, we often need to import Excel data into databases (such as MySQL, SQL Server, Oracle) for data analysis and processing. Usually, we use database tools like Navicat or the Excel import...
Microsoft Excel
0
Easy Steps to Fix "Canon Printer Won't Connect to WiFi Network"
by: taylorcarr | last post by:
A Canon printer is a smart device known for being advanced, efficient, and reliable. It is designed for home, office, and hybrid workspace use and can also be used for a variety of purposes. However,...
General
0
Basic Javascript concepts
by: aa123db | last post by:
Variable and constants Use var or let for variables and const fror constants. Var foo ='bar'; Let foo ='bar';const baz ='bar'; Functions function $name$ ($parameters$) { } ...
Javascript
0
Batch import of multiple excel files into the database
by: ryjfgjl | last post by:
If we have dozens or hundreds of excel to import into the database, if we use the excel import function provided by database editors such as navicat, it will be extremely tedious and time-consuming...
Data Management
0
Merging data from multiple Excel files
by: ryjfgjl | last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
Data Management
1
Looking to do Android software development, any suggestions? Is flutter better?
by: nemocccc | last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
General
1
Is that possible of reading the .csv file in column wise and the column have different lengths ?
by: Sonnysonu | last post by:
This is the data of csv file 1 2 3 1 2 3 1 2 3 1 2 3 2 3 2 3 3 the lengths should be different i have to store the data by column-wise with in the specific length. suppose the i have to...
C / C++

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!