.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Register
 
Win Surprise Gifts!!!
Congratulations!!!


Post New Web Links

WPF & Authentication & Web services (not ASP.NET)

Posted By:      Posted Date: October 08, 2010    Points: 0   Category :WCF
 
Hello

I need to implement authetication mechanism in WPF application using external webservice which is not .NET-based. I need to:
1. Authenticate users using this web service
2. During first login I need to collect some additional info (let's call it ApplicationId) and store it locally (in possibly secure way)

I was not able to find any useful information about that kind of problem.

My idea for now is to implement BLL object (let's call it UserService) containing static profile object (containing username and isAuthenticated value). This UserService would use proper DAL objects to get hashed password for user using web service and compare it with inserted by the user. As to second requirement I would write second DAL object which would be able to read and store encrypted ApplicationId (selected by the user during the first login) to User Settings.

I would appreciate any comments
Regards


View Complete Post


More Related Resource Links

It's possible to using sharepoint services 3.0 hosted site without authentication login ?

  
It's that any way to able user read / write by without login authentication for sharepoint services 3.0. because i'm having problem when external user need to access to our sharepoint pages, but their can login to it.

WCF Membership Authentication and Winform Client Application Services

  
I am needing more validation of what I am doing versus solving a problem. I have a winforms application that uses Client Application Services to validate a user against a customer membership provider all over SSL.  This works fine.  My winforms application validates correctly. The winforms application uses WCF to call services that are installed on the same IIS server that is providing the membership services for the Client Application Services.  The WCF services use wsHTTP binding, transport security, username credentials, and validate against the same membership provider as the Client Application Services. It appears that although the service and Client Application Services are at the same URL, they do not share credentials between them.  Ideally, once I log into Client Application Services, any calls to a WCF service at that location would be automatically authenticated.  However, this is not true.  I have to pass the username and password into the credentials for the WCF service.  This works as expected where the username and password are validated prior to allowing a service call.  On subsequent services calls, it does not validate again since it has established the secure channel. So, does this sound like the best approach?  Is there a way to pass credentials from the Client Application Services to WCF automatically?  I

Reporting Services Forms Authentication and group permissions

  

Hello all,

I have spent some time getting Forms Authentication working with 2008 (R2) I have one final problem left that is causing intense frustration...

The working bits:

a) Built and tested the required extension - thanks to a combination of old Microsoft example supplemented by the one from chapter 19 of Teo Lachev's book, supplemented by Brian Lawson's book.

b) used existing user/group structures in the db to implement role level permissions

c) Can now grant rights to usernames and the usernames validated against our db, they can log in fine and run reports.

d) Nice customised login screens that login across the application and Reporting Services with a single login - which was the primary aim after all!

e) can grant rights to folders at group level and granting/revoking those rights adds or removes the folders in ReportManager - all looking wonderful

The last hurdle:

If I grant permissions to a specific username (we use email address as the username) then that user can log in to ReportManager fine and see what they should see, so it seems like the bulk of the authentication and authorisation extension logic is OK.

If I grant the exact same permission to a role, and make a login a member of that role (removing the specific username permission) then they

Reporting Services 2008 and Windows Authentication

  

I have been searching through numerous blogs and MSDN/Technet posts for the answer to this but I can't seem to find anything concrete other than 'do something different.'

 

What I am attempting to do is setup reporting services to do a double hop when using Windows Authentication back to remote datasources.  Here are the scenarios I am faced with so far;  To the best of my knowledge I have setup the appropriate SPN's for kerberos, the server hosting the application is setup for Delegation, as is the Domain Service Account that RS is running under.  RS is running in native mode, not sharepoint integrated.

 

1) When the rsreportserver.config file is set to use NTLM a user can authenticate back to the report server and a report will return the USERID for as appropriate user.  When making a connection to a remote datasource it tries to authenticate as NT Authority\Anonymous logon.  obviously I am not going to setup the anon logon as a read only account on the server for security purposes.

The Web.config file for the report server is set to impersonate 'TRUE', when setting to false the reports returns a userid of the service account RS is using, and attempts to connect to the remote datasource as the service account.  There would be no way to filter roles for who is able to

WPF & Authentication & Web services (not ASP.NET)

  
Hello

I need to implement authetication mechanism in WPF application using external webservice which is not .NET-based. I need to:
1. Authenticate users using this web service
2. During first login I need to collect some additional info (let's call it ApplicationId) and store it locally (in possibly secure way)

I was not able to find any useful information about that kind of problem.

My idea for now is to implement BLL object (let's call it UserService) containing static profile object (containing username and isAuthenticated value). This UserService would use proper DAL objects to get hashed password for user using web service and compare it with inserted by the user. As to second requirement I would write second DAL object which would be able to read and store encrypted ApplicationId (selected by the user during the first login) to User Settings.

I would appreciate any comments
Regards

Windows Identity Foundation (Claims Based Authentication) for Reporting Services

  

Hi

I see that SQL Server 2008 R2 Reporting Services now supports Claims Based Authentication in Sharepoint 2010, meaning that end users can authenticate with Sharepoint using Claims Based Authentication, and use the same security tokens to connect through to Reporting Services.

I assume that behind the scenes Sharepoint is using Windows Identity Foundation (WIF - formerly codenamed "Geneva") to handle the authentication, and passing this on to Reporting Services.

I'm keen to use Windows Identity Foundation to authenticate with Reporting Services without Sharepoint. We have an existing ASP.NET web application, and we'd like to call Reporting Services from that, passing on the Windows Identity Foundation credentials of the user logged into our web application.

I've done some work on setting up a custom security extension using Forms Authentication (based on the sample), but am not sure how to proceed from there.

Google/Bing hasn't been helpful. Can you please point me to some guidance on how to set up Windows Identity Foundation authentication for Reporting Services?<

Claims Based Authentication (CBA) and Web Services Authentication

  

I'm planning to use CBA to do authentication and authorization to a document library.  For example, if you have the claim type 'location' equal to 'London' then you are granted access to a folder.  Simple, and it works great from the out-of-the-box web browser interface. 

The question is, can the Web Services interfaces also accept a signed SAML token and use those attribute to do authentication and authorization?  I would prefer to use the CMIS interface where possible.  I understand that the web services are based on WCF, which leads me to believe I can just modify the web.config to add in WCF directives for ws2007HttpBinding->security->message, but will the SP web services code respond by using the identity in the message? 

What I have noticed so far, is that the CMIS interface has directives for only impersonation only.  Since CBA identities do not map to windows accounts, I thinking I'm barking up the wrong tree.  I'm not dead set on CMIS, so if there are other web services available to do CBA, I'm all ears.

There's not a lot of practical material on this, and I'm currently working on a PoC to acheive this goal.  Any help would be greatly appreciated. 

Thank-you,

Greg


WCF Authentication Services

  
Hi People,

Does anyone know if it is possible to run authentication services from a wcf service that is self hosted? (eg in a console, not in IIS).

Thanks!
Maxus

"Use any authentication protocol" not allowed by CorpAudit for Excel Services

  

Hi there,

we have successfully installed SharePoint 2010. Our next goal is to use the Excel Services. The therein published sheets contain a data connection to an SSAS cube which again holds the corresponding user permissions in their roles. In order to pass the windows credentials on to the SSAS cube we need to translate the Claim back to a windows token. According to this whitepaper (a href="http://technet.microsoft.com/en-us/library/ff829837.aspx">http://technet.microsoft.com/en-us/library/ff829837.aspx) we need to set up the constrained delegation with the option "Use any authentication protocol". Unluckily this option is not permitted to be set by our internal CorpAudit settings.

Does anyone of you have a workaround on this topic or is the use of the delegation of credential not possible at all without this setting?

Thanks!

Daniel


SharePoint forms authentication and web services

  

Hello

We have a WSS 3.0 site that uses forms authentication using a custom SQL Server 2000 database. My goal is to log into the site with a Blackberry phone and display list items in small aspx pages formatted for the Blackberry browser.

I'm in that prototyping phase, learning what I can and cannot do with each approach. Initially I wanted to use the SP web services to authenticate and use the resulting cookie in subsequent web service calls. I have not been able to get the authentication web service working yet. My other idea was to use the native mobile login page to authenticate. Then I should be able to use the SP object model to fetch and display lists on other pages.

I saw postings that the SP web services don't work with forms authentication but also saw posts indicating success.

What's the final answer on that one? I'd just as soon avoid unnecessary paths.

Has anyone actually done something like this?

Thanks for the help!

Terry


Authentication and ASPXAUTH size when using Client Application Services; MemberShip.ValidateUser alw

  

Apologies if this is the incorrect forum. Please let me know if it should have been posted elsewhere. Please let me know if I need to clarify anthing. Thanks in advance for any suggestions, direction pointing, etc.
-----
I have been using all three features of  client application services (authentication, profiles, and roles) in my windows app (DotNet 3.5 framework) for almost two years now. Up until now, I have not had any problems. This week I hit a brick wall and am pretty stumped with two seperate but related issues.

Issues:
In development, we decided to upgrade our websites/services to DotNet 4.0. All applications upgraded successfully. However we are unable to log into our application using Client Application services. No matter what user we use, Membership.ValidateUser returns false. Since we know the username and passwords, we thought this was strange. When debugging the application, we found that Membership.ValidateUser was throwing an InvalidOperationException (see below for complete exception) stating that the ASPXAUTH property was too long, longer that the schema created in the SQL/CE database. (See below for things tried).

In production .. A user all of the sudden could no longer gain access to the application. Upon inspection, his ASPXAUTH cookie was 264 characters long (9 characters longer than the schemas nvarchar(256)). E

Excel Services data connection issue. Single environment, none authentication

  

I really need someone's help to configure my SharePoint 2007/ Excel services connectioon to SSAS 2008. It surely cannot be that complicated???

MOSS on server 1
SSAS 2008 cube on server 1
Trusted data provider created (OLE DB, MSOLAP.4)
Trusted data connection library created
Trusted File location created - children trusted, allow external data = "Trusted data connection libraries and embedded"
Unattended Service Account - setup

I use Excel and create a new .odc file with athenticated type = NONE and save it to the Trusted data connection library. Using the odc I open a new workbook. I firstly get a security warning saying that "MS Office has identified a potential security concern. Data connections have been blocked. If you choose to enable data connections..."

I click on Enable, and now have access to my cube. I create a pivit table and chart and publish the workbook back to a child folder in the Trusted File location. All okay so far!!

Now I open the new workbook, and as soon as I try and interact with it, I get the dreaded error "Unable to retrieve external data for the following connections:

BI_Cube_PO01

The data sources may be unreachable, may not be responding, or may have denied you access


Verify that data refresh is enabled for the

Web Services - Returning a Cookie from the web service im calling after authentication

  

Hi,

I am trying to call an authentication method on a web service that returns a cookie, however when i call the web service, I just get the SOAP object returned, how do i get the cookie back after I have been authenticated ?

Any help or pointers appriciated

Kindest regards

Andrew


Retrieving Data from a Multi-Authentication Site Using the Client Object Model and Web Services in S

  
Learn to add an additional header to your request when programmatically accessing a SharePoint site that uses multiple authentication providers.

extend wcf Authentication Services.

  

in .net 3.5 Microsoft has introduced Applicaton Service through WCF. This includes Authentication Service, Role Provider Service and Profiler Service. Now I am having a requirement that force me to add one more Function in AuthenticationService class. But I have found that AuthenticationService Class have no public Constructor. Thus it cannot be inherited. So is there any other way, I can add one more function into System.Web.ApplicationServices.AuthenticationService class.

 

FYI. Extention Methods doesnt work in this scenario.
- Regards,
Bhagyesh Joshi, India.

Installing and Uninstalling Services

  
Installing and Uninstalling Services.Unlike most projects you create in Visual Studio .NET, Windows Service projects cannot be run directly from the development environment by pressing F5. This is because the service in the project must be installed before the project can run.

You can quickly install your service application by using a command line utility called InstallUtil.exe.

Getting Started with Windows SharePoint Services

  
Of all of the capabilities of SharePoint, I thought I would start with the most basic installation - as a corporate intranet. It is likely that we will need to discuss some of the elements of SharePoint as we go along, so this also gives us the opportunity to review these elements for future reference.

Before going into too much detail, I would like to point out that you can try the core SharePoint framework (known as Windows SharePoint Services or WSS) for free. On Microsoft's Web site you can download a trial version of Virtual PC 2004 (VPC). Using VPC, you can install the Windows 2003 Evaluation Kit and the WSS add-on. This combination will give you 45 days to evaluate the setup.
Categories: 
ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend