tags:

views:

39

answers:

1
Q: 

Silveright - extending AuthenticationService to provide custom authentication

I am trying to add to the authentication system provided in the Silverlight 4 business template as my model does not completely fit that provided in the template. I have an existing web service that performs my authentication and provides roles and also permitted operations for each role. This is the model provided by AzMan/Authentication Manager.

However, rather than just get a single role, following authentication I provide the user with a list of available roles and allow the user to select one of these roles and then get a list of operations/actions for that selected role.

The problem that I have is that I can't work out how to add new methods to the authenticationservice to allow me to get the operations for the current user, and currently selected role in order to complete the login process e.g.

    public SessionInfo GetOperations(string username, string selectedRole)
    {
        SessionInfo sessionInfo;

        using (AzManServiceClient azClient = new AzManServiceClient("AnonymousAuthentication"))
        {
            sessionInfo = azClient.LoginUserByUsername("msldap://CN=LiveApps,CN=Program Data,DC=HLSUK,DC=local", "AIRS", selectedRole, null, username);
        }

        return sessionInfo;
    }

The above method is not accessible from the LoginForm.xaml.cs using WebContextBase.Current.Authentication... Only methods such as Login are visible which is even more baffling because I can't see these methods in authenticationbase. I'm completely confused. How do I add new methods to the authentication service, or should I create a new domainservice, or should I access the azman service to get the operations directly from the silverlight client.

+1  A: 

Have you tried to Override the methods in AuthenticationBase?

Then you can expand your authenticationservice with whatever logic you want.

 <EnableClientAccess()>
        Public Class AuthenticationRiaService
            Inherits AuthenticationBase(Of UserAccount)

            Protected Overrides Function ValidateUser(ByVal userName As String, ByVal password As String) As Boolean
            End Function
    End Class

Also set

WebContext.Current.Authentication To your authenticationservice as found in namespace System.ServiceModel.DomainServices.Client.ApplicationServices

Sorry for stupid VB code. :D

Einarsson  2010-07-07 11:58:44
Yes I am extending Authentication base and the GetOperations method is part of the extended class - why can't I see it?
Calanus  2010-07-07 13:04:34
Did you set WebContext.Current.Authentication To your authenticationservice ?If using Unitycontainer:Container.RegisterInstance(Of AuthenticationService)(WebContext.Current.Authentication)
Einarsson  2010-07-07 14:02:58
And we access the Login method through new AuthenticationService().Login() so you should be able to access your methods that way. Not through WebContext.Current.
Einarsson  2010-07-07 14:04:06
I did set the WebContext.Current.Authentication to my authentication service. I can see the Login method, I just can't see any "new" methods. Even if I do var x = new AuthenticationContext(); x.GetOperations(y,z); it claims that GetOperations doesn't exist!
Calanus  2010-07-07 16:07:41
Dang, youre right. Only login is available. But when you call login while overriding ValidateUser, you will eventually get there. Can you do your logic from there?Else, it seems like you will have to make another domain service to handle different things than just authentication.Maybe the authenticationbase is just for handling login/logout/isloggedin etc. And then you'll have to have a useraccountservice or something that handles the roles etc. :)
Einarsson  2010-07-08 08:40:51
sigh I think that you are right - I will use another domain service to do get the operations for the role. I still wish that I understood why I can't see the new methods in the service though - there is something that I am not understanding here....
Calanus  2010-07-08 09:56:38

related questions

How do I write Firefox add-on that automatically enters proxy passwords?
Login Integration in PHP
Strange Rails Authentication Issue
Concurrent logins in a web farm
Is there a browser equivalent to IE's ClearAuthenticationCache?
How can I authenticate using client credentials in WCF just once?
Why can't I connect to my CAS server with Perl's AuthCAS?
Best Solution For Authentication in Ruby on Rails
Authenticate on an ASP.Net Forms Authorization website from a console app
How do I use NTLM authentication with Active Directory
What have you used Windows CardSpace for, if anything
Forms Authentication across Applications
Retreiving the PC Name of a Client? (Windows Auth)
How would you implement FORM based authentication without a backing database?
What's the best way to authenticate over WCF?
Only accepting certain ajax requests from authenticated users
OpenID authentication in Ruby on Rails
OpenID Attribute Exchange - should I use it?
OpenID: which provider should I recommend to my users?
What to use for login ID?
ASP.NET authentication: user name Vs User ID
How do I add SSL to a .net application that uses httplistener - it will *not* be running on IIS
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Checklist for IIS 6/ASP.NET Windows Authentication?
The Definitive Guide To Website Authentication