tags:

views:

222

answers:

2
Q: 

Accessing SharePoint authentication information from .NET ActiveX control

We have a .NET ActiveX control which is embedded inside a custom SharePoint page. The user has to authenticate (Windows Authentication not Forms Authentication) to access this page.

Our ActiveX control is making web service calls back to the SharePoint server. Because the SharePoint server does not allow anonymous access, we need to provide credentials as part of the web services call. If the user is checking the 'Remember Password' checkbox when prompted for credentials, then we can access those credentials via the CredentialCache.DefaultNetworkCredentials. However, if they do not check that checkbox, we need another mechanism to get a hold of valid credentials (which must exist since we are embedded in a page that can only be accessed via authentication).

How can we access the credential information (probably stored in a cookie) we need to authenticate against SharePoint so we can access the web services?

A: 

There is a method in the SPUtility class called EnsureAuthentication, you can also hit the /_layouts/Authenticate.aspx page to log the user automatically in sharepoint.

You can also encapsulate your call with Impersonation.

F.Aquino  2009-12-10 19:53:53
The EnsureAuthentication seems to be a server-side method, but we are looking for a method to execute client-side, inside our ActiveX control hosted on the client machine. As for the Authenticate.asmx, we are looking for a mechanism to grab the credentials the user already provided when navigating to the hosting page and not re-prompt the user for credentials.
Philipp Schmid  2009-12-10 20:44:28
I use similar approaches to access SharePoint from a Silverlight Application. My request is something like: Silverlight calls ASHX file (under SharePoint), ASHX file impersonates the request with RunWithElevatedPrivileges and outputs the return. I sent you the win32 impersonation so you could build that less sharepoint-centric. The Authenticate.aspx idea is that the request will get the current user and pass on the windows account and authenticate it, automatically, transferring the request to the actual webservice
F.Aquino  2009-12-11 00:53:22
A: 

You can send a message to your ashx like you do it from Silverlight using XMLHTP.

Mauricio  2009-12-11 15:26:31
Sending that message with the correct credentials is exactly what I am trying to solve here.
Philipp Schmid  2010-01-22 19:31:33

related questions

Displaying Version Information in a Web Service
Example Web Service
SoapException: Root element is missing occurs when .NET web service called from Flex
Best practice for webservices
What is your preferred method of sending complex data over a web service?
.Net - Returning DataTables in WCF
Is it possible to return objects from a WebService?
How much extra overhead is generated when sending a file over a web service as a byte array?
Returning Large Results Via a Webservice
File Uploads via Web Services
best way to persist data in .NET Web Service
What is the difference between an endpoint, a service, and a port when working with webservices?
Calling REST web services from a classic asp page
Best way to write a RESTful service "client" in .Net?
Where can I find some good WS-Security introductions and tutorials?
ASP.NET Web Service Results, Proxy Classes and Type Conversion
Web Services -- WCF vs. Standard
C# WCF Service - Backward compatibility issue
Document or RPC based web services
How to easily consume a web service from PHP
Timer-based event triggers
How to pass enumerated values to a web service
Homegrown consumption of web services
How do I print an HTML document from a web service?
How do I fill a DataSet or a DataTable from a LINQ query resultset ?