tags:

views:

27

answers:

1
Q: 

WCF and AIR/Flex 4 security

Dear All!

In a current project we are hosting a WCF 3.5 service on IIS7 and expose the methods through basicHttpBinding to an Adobe AIR/Flex4-client. Luckily Flash Builder 4 has integrated support for SOAP, so that a service-proxy can be generated easily.

Unfortunately, we are not able to find any elegant solution to enable username authentication. The only way we got working, is to pass username und password on every single method-call, which certainly blows up the method-signatures and enforces the service-method-implementation to do a validation by their own.

Could you please direct me to any solution, which could bring username authentication within the message-headers to adobe flex?

Best regards, Daniel Lang

A: 

How would you pass the authentication credentials in a non Flex app?

Most people just set a cookie of some sorts. Many server side app servers do this stuff internally.

Any calls from the Flash Player to your backend will send along any cookies that were already sent; which can easily be used to connect to your server side session. I thought most server side app servers handle this stuff internally.

If you need to set specific headers to HTML calls, you can specify them using the headers property of HTTPService. Here is a good example about how to set the header.

www.Flextras.com  2010-10-24 18:14:54
Thank you for the answer! But as far as I know (acc. google) an Adobe AIR application with Flex has no support for cookies. Actually I was looking or a solution like wsHttpBinding, where I can specify the credentials which are then sent within the http-header. Is there any aquivalent, which could be uses in combination with AIR/Flex?
dlang  2010-10-26 10:01:03
Ahh sorry, I see - you have already answered my question in the last paragraph! This will enable me to find a solution! Thank you!
dlang  2010-10-26 10:02:11

related questions

Silverlight vs Flex
Executing JavaScript from Flex: Is this javascript function dangerous?
How To Get Label Of Combobox to Fade In Flex
How do I change the title bar icon in Adobe AIR?
How do I call a Flex SWF from a remote domain using Flash (AS3) ?
Flex: does painless programmatic data binding exist?
SoapException: Root element is missing occurs when .NET web service called from Flex
Any recommendations for in-depth Flex training?
How do I restyle an Adobe Flex Accordion to include a button in each canvas header?
Deleting / Replacing A Node in E4X (AS3 - Flex)
How can I "unaccept" a drag in Flex?
Printing Flex components in FireFox 3
Is it possible to add behavior to a non-dynamic ActionScript 3 class without inheriting the class?
How do I get rid of the "multiple describeType entries" warning?
Open local file with AIR / Flex
Flex / Air obfuscation
Adobe Flex component events
Can you access the windows registry from Adobe Air?
Actionscript 3 - Fastest way to parse yyyy-mm-dd hh:mm:ss to a Date object?
Adobe Air - Using multiple SQLite databases at once
How can I unit test Flex applications from within the IDE or a build script?
Best way to learn Flash?
Get the current logged in OS user in Adobe Air
Adobe air - SQLStatement.execute() - Multiple queries in one statement
Unloading a ByteArray in Actionscript 3.