I would like to get basic authentication working with a WCF service running on IIS 6 and a WCF proxy (basicHttpBinding). The problem is that I'm totally lost in all these different configuration settings you can do in WCF
and IIS 6. I would be glad if you could shed some light on this matter.
First of all, I have understood that the client credentials must be sent in the following way in WCF proxy code:
proxy.ClientCredentials.UserName.UserName = MyUserName;
proxy.ClientCredentials.UserName.Password = MyPassword;
But then comes the hardest part. How do I have to configure my WCF proxy and service along with IIS 6 for basic authentication?
After a lot of googling I found out that there are at least three variations on how you can configure basic authentication in WCF and here are my conclusions, please correct if I'm wrong:
1. Sending a user name and password as plain text without SSL to a web server: