New WCF Security Examples

A little while ago, HongMei Ge sent me around a dozen new security samples. After reviewing them, they are truly cool. Topics covered include:

  • CredMan UI management
  • AzMan integration
  • Client credentials on a per channel basis
  • Custom Algorithm Suites
  • Custom Tokens and Caching
  • SAML 2.0 tokens

And much more...

One of the coolest samples is an app that helps you manage certificates (written by Christian Geuer-Pollmann).

Check them out here:

https://wcf.netfx3.com/files/53/default.aspx

Comments

  • Anonymous
    July 10, 2007
    Thanks for the flowers :-) Christian

  • Anonymous
    July 12, 2007
    Hi Justin,   Would it be possible for you to show a sample showing Trusted Subsystem security model in WCF? I use the <security/> element in the webconfig file of an asmx based service to selectively allow/deny specific Windows identities. How do I go about doing this using basicHttpBinding on IIS. I have to use basicHttpBinding because there are some downlevel clients (.NET 1.1, ASP) in our environment. I would really, really appreciate if you could either blog or upload a sample of the same. Thanks, Kris

  • Anonymous
    July 16, 2007
    Have you seen the trusted facade service in the Windows SDK? http://msdn2.microsoft.com/en-us/library/Aa355058.aspx Wenlong has also written a bit about this: http://blogs.msdn.com/wenlong/archive/2006/12/01/impersonation-with-double-identities.aspx.

  • Anonymous
    July 16, 2007
    Thanks for the links. The trusted facade service uses wsHttpBinding. I have to use basicHttpBinding because there are some .NET 1.1 clients.  The second link talks about how to prevent impersonation with double identities. I desperately searched for some documentation on migration of asmx services to WCF that addresses this specific issue but could not find any. There is good deal of documentation specific to wsHttpBinding, netTcpBinding but not basicHttpBinding. http://msdn2.microsoft.com/en-us/library/ms730288.aspx I have posted in newsgroups but could not get any decent answers.

  • Anonymous
    December 16, 2008
    The comment has been removed