Custom Credential and Credential Validation

Security in Windows Communication Foundation (WCF) is based on the exchange of credentials between services and clients. Most security scenarios can be satisfied using common credential types, such as Windows (Kerberos), username and passwords, and certificates. However, if a new type of credential is required, the topics in this section explain how to handle and validate new types.

In This Section

How to: Create a Service that Employs a Custom Certificate Validator
Explains how to customize WCF validation by inheriting from the X509CertificateValidator class.

Walkthrough: Creating Custom Client and Service Credentials
Demonstrates how to extend the ClientCredentials and ServiceCredentials classes to accommodate new credential types. This is first in a series of topics that enable creation of custom credential types.

How to: Create a Custom Security Token Provider
Explains how to create a security token provider to handle new credential types and return new tokens for the credential. This is the second topic in the series.

How to: Create a Custom Security Token Authenticator
Explains how to create a custom authenticator to authenticate a new credential type. This is the third topic in the series.

Reference

System.ServiceModel.Security

System.IdentityModel.Claims

System.IdentityModel.Policy

System.IdentityModel.Tokens

System.IdentityModel.Selectors

X509CertificateValidator

ClientCredentials

ServiceCredentials

Related Sections

Authentication

Federation and Issued Tokens

Authorization

See also

• Security