Click here to Skip to main content
15,881,559 members
Search within:


Articles / Programming Languages / C#
 

Custom Authentication and Security for Routing Service of WCF 4.0

Rate me:
Please Sign up or sign in to vote.
4.50/5 (4 votes)
13 Oct 2012CPOL8 min read 44K   1.3K   30  
Defining security contexts in Routing service environment
Though WCF routing features for content-based routing, protocol bridging, and error handling seem to be very exciting, I have faced some issues while defining their security context in Routing service environment. In this article, we will discuss custom authentication and security for routing services.
 
using System;
using System.Collections.Generic;
using System.Collections.ObjectModel;
using System.IdentityModel.Policy;
using System.Linq;
using System.Security.Authentication;
using System.Security.Principal;
using System.ServiceModel;
using System.ServiceModel.Channels;
using System.Text;
using System.Threading;
using GlobalCommonLib;

namespace ServiceCommonLib
{
    public class CentralUserIdentity : IIdentity
    {
        private readonly CentralRequestSession _session;
        public CentralUserIdentity(CentralRequestSession session)
        {
            this._session = session;
        }

        public string Name
        {
            get { return _session.UserName; }
        }

        public string AuthenticationType
        {
            get { return "Central"; }
        }

        public bool IsAuthenticated
        {
            get { return true; }
        }

        public CentralRequestSession Session
        {
            get { return _session; }
        }
    }

    public class CentralPrincipal : IPrincipal
    {
        readonly IIdentity _identity;
        string[] _roles = null;

        public CentralPrincipal(IIdentity identity)
        {
            this._identity = identity;
        }

        public static CentralPrincipal Current
        {
            get
            {
                return Thread.CurrentPrincipal as CentralPrincipal;
            }
        }

        public IIdentity Identity
        {
            get { return _identity; }
        }

        public string[] Roles
        {
            get
            {
                //Findout Role and set here 
                return _roles;
            }
        }

        public bool IsInRole(string role)
        {
            //Findout Role and set here 
            return true;
        }       
    }

    public class CentralAuthenticationManager : ServiceAuthenticationManager
    {
        public override ReadOnlyCollection<IAuthorizationPolicy> Authenticate(ReadOnlyCollection<IAuthorizationPolicy> authPolicy, Uri listenUri, ref Message message)
        {
            var session = CredentialHelper.GetSessionData(message);
            CheckCredentials(session);

            var identity = new CentralUserIdentity(session);
            IPrincipal user = new CentralPrincipal(identity);
            message.Properties["Principal"] = user;

            return authPolicy;
        }

        public void CheckCredentials(CentralRequestSession credentials)
        {
            System.Console.WriteLine("Checking Credentils for {0}..........", credentials.UserName);
            // check the user and password against a database; 
            // if not match 
            // throw new AuthenticationException("Incorrect credentials!");        
            System.Console.WriteLine( "{0} is Valid!!", credentials.UserName);

        }
    }



}

By viewing downloads associated with this article you agree to the Terms of Service and the article's licence.

If a file you wish to view isn't highlighted, and is a text file (not binary), please let us know and we'll add colourisation support for it.

License

This article, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)


Written By
Morshed Anwar
Team Leader PracticePRO Software Systems Inc
United States United States
In my childhood, my uncle has shown me how to see the cloud in a close look and I understand that one can draw some elements of the Earth in the sky-canvas if he/she wants to. After that the cloud becomes closer to me and It teaches me one thing that, a deeper-look to something will give you some clues to draw your imagination. You can able to see that one which you have build-up in your mind.

Years past, I have started my career as a software engineer and has been looking for passion in my coding and development which I should be to enjoy my profession and has started asking myself- 'am I doing any engineering here?!' Is my code becoming that thing which I have designed in my mind? So to find that answer I have tried that old solution here... I have decided to come closer to my code and start analyzing them. And it is really working for me and at least it gives me the confidence that I can build something that I really want to. I can draw my thinking there through my code and can build-up my vision that I have designed in my mind. It also helps me to think out of the box, solve each problems by making blocks and make me careful on each steps.

• Morshed's Technical Blog site: http://morshedanwar.wordpress.com/

• Morshed's Technical articles those are published in Codeproject site: http://www.codeproject.com/script/Articles/MemberArticles.aspx?amid=2992452

• Morshed's Linkedin profile: http://www.linkedin.com/in/morshedanwar

• Morshed's Facebook Profile : http://www.facebook.com/morshed.pulok

Beside all these I like to do - photography and music. Here is my Flickr photos : http://www.flickr.com/photos/morshed_anwar/

Comments and Discussions

Permalink
Advertise
Privacy
Cookies
Terms of Use
Layout: fixed | fluid

Posted 13 Sep 2012

Article Copyright 2012 by Morshed Anwar
Everything else Copyright © CodeProject, 1999-2024

Web01 2.8:2024-04-02:1