WCF Data Service Authentication for clients RRS feed

  • Question

  • I am interested to find out how to Authenticate clients when using WCF Data services.

    The senario I have:
    WCF Data services that we use internally in our MVC application (Form authentication). How can I change this to enforce a UserID and Password for each call to the the Data service. Do I need to set the authentication in the IIS where the WCF Data service is hosted?

    Also External clients may want to use the data service, how can I enforce security so that they cannot just browse to the data using the URL without being authenticated.
    I can set the Entity Access rule as

    config.SetEntitySetAccessRule("*", EntitySetRights.None);

    If I have service opertions to get the data and do crud operations will those still be possible with the above Entity access rule but having the Service Operation rule as:

    config.SetServiceOperationAccessRule("*", ServiceOperationRights.All);


    Thursday, June 21, 2012 5:27 PM


All replies