tags:

views:

207

answers:

1
+3  Q: 

Architechture of service application in WCF

I need some help with the architechture of a WCF application. The will be a number of services that should be available to serve a number of different clients, e.g.

  • ASP.Net application (JavaScript and/or Silverlight)
  • iPhone
  • Windows Mobile
  • Android

Some of the services need authentication and some will be available w/o authentication.

I need some advice on the services that need authentication, I want to use username/password credentials over SSL.

How (if possible/recommended for all the client types) should I design this in WCF?

+2  A: 

You can (and should) decouple Authentication from service implementation so that you can vary these independently. This is possible by implementing (or reusing) a ServiceAuthorizationManager.

The nice thing about these is that they can be defined in .config and you can code your entire service without knowing anything about how the user authenticated.

If you need to know more about the user, you can use Thread.CurrentPrincipal.

To implement username/password validation, implement a UserNamePasswordValidator.

Mark Seemann  2010-01-14 13:17:04
Thanks, that answer large parts of my problem. Regarding the username/password authentication itself, do you have any recommendations on the implementation?
Fredrik Jansson  2010-01-14 14:35:49
Edited my answer to answer that question as well :)
Mark Seemann  2010-01-14 14:41:58
Thank you for all help!
Fredrik Jansson  2010-01-14 15:04:15

related questions

Dynamic programming with WCF
WCF Service Returning "Method Not Allowed"
Exceptions in Web Services
What SPN do I need to set for a net.tcp service?
How do I unit test a WCF service?
Best practices for versioning your services with WCF?
Lazy Loading with a WCF Service Domain Model?
How many ServiceContracts can a WCF Service have?
How can I authenticate using client credentials in WCF just once?
WCF - Domain Objects and IExtensibleDataObject
InvalidOperationException while creating wcf web service instance
Closing and Disposing a WCF Service
What WCF best practices do you follow in object model design?
WCF push to client through firewall?
Loading System.ServiceModel configuration section using ConfigurationManager
I would like some tips for debugging WCF Web Service exceptions
What's the best way to authenticate over WCF?
Good Reads for Distributed Systems
.Net - Returning DataTables in WCF
What is the easiest way to add compression to WCF in Silverlight?
WCF Backward Compatibility Issue
Best Practices for securing a REST API / web service
Web Services -- WCF vs. Standard
C# WCF Service - Backward compatibility issue
WCF - High availability