locked
WCF 4 Routing And Windows Identity Foundation RRS feed

  • Question

  • Hi

    How does the new routing service deal with security? according to this it might be difficult when default windows security is not chosen(typically a simple username/ password scenario).

    Can WCF Routing actually support a scenario where the router receive a WS-Security secured message over HTTP and forwards it to a server always over HTTP, without unwrapping the security token?

    My scenario is as follows:

    1. A server(relying party), a custom STS with username/Password authentication and a client. We use ws2007FederationHttpBinding ans message security.
    2. Now we setup WCF Routing, it works with basicHttpBinding and wsHttpBinding but not with ws2007Federation.
    3. Then we using WIF, we can instantiate proxy over router, the STS generates claims ans send it to client, but it fails at the first service call. It seems the router is waiting for certificate definition (included, otherwise we get an error), then seems to require Cardspace UI (while in fact we're using username/password).

    If so, would you have an example?

    Thanks



    Thursday, February 23, 2012 5:04 PM

Answers

All replies