I am building a Sivlerlight app that calls methods on a WCF middle-tier application for its data. I don't want the middle-tier to have to lookup the user/pass in the DB for every call, so I want to use an encrypted token created by the server to be passed from the client to the server as evidence that the requestor is valid. I was wondering if someone could help validate what I am thinking:
- Client app connects to middle-tier service using HTTPS and passes user name and password
- Server responds with a token string that looks something like this:
The token will most likely be much longer than this, but basically it should be made up of characters that can be valid in the XML (or in CDATA). When decrypted, the token will contain the following:
- The user ID of the logged in user.
- Permissions of the logged in user.
- The time the session should end.
- The IP address from which the login request was sent.
On subsequent requests, the client will send this token and the server will decrypt it and validate the following before processing the request:
- The session end time is greater than the current time
- The IP address matches the sender
- The permissions are sufficient for the request
Also, there will be a mechanism for refreshing the token on server responses so the session can continue to stretch on.
Here are my questions:
- Does this seem functionally appropriate? (secure, scalable, etc.)
- What enryption algorithm should I use? Is there something already in the .NET framework that will work?
Thank you!