I have a WCF web service, and I want to use Basic authentication. I am getting lost in the authentication options:
- In IIS 6 Manager, I can go in to the properties of the web site and set authentication options.
- In the web site's web.config file, under
system.web
, there is an<authentication mode="Windows"/>
tag - In the web site's web.config file, under
system.serviceModel
, I can configure:
<wsHttpBinding> <binding name="MyBinding"> <security mode="Transport"> <transport clientCredentialType="Basic"/> </security> </binding> </wsHttpBinding>
What is the difference between these three? How should each be configured?
Some context: I have a simple web site project that contains a single .svc
web service, and I want it to use Basic authentication over SSL. (Also, I want it to not use Windows accounts, but maybe that is another question.)