堆栈内存溢出
  简体   繁体   English

WCF Windows凭据

[英]WCF windows credentials

 原文  2009-08-10 08:58:31       c#/ asp.net/ wcf

问题描述

my client on server A calls a service on B which calls a service on C. 我在服务器A上的客户端调用B上的服务,该服务调用C上的服务。
In order to get the call working from B->CI have to do this: 为了使呼叫从B-> CI工作必须这样做: 

channel.Credentials.Windows.ClientCredential = 
   new System.Net.NetworkCredential("WndowsUserName", "WindowsPassWord");  
IService1 service = channel.CreateChannel();

etc... 等等...

the user name and password are the windows credentials used from A->B Of course I do not want to hardcode this so how can I do this without hardcoding? 用户名和密码是从A-> B使用的Windows凭据当然我不想硬编码,所以如何在没有硬编码的情况下执行此操作?

I tried, with no luck: 我试过,没有运气: 

WindowsIdentity callerWindowsIdentity = 
    ServiceSecurityContext.Current.WindowsIdentity;  
using (callerWindowsIdentity.Impersonate())

3 个解决方案

解决方案1
 2  2009-08-10 09:15:43

Use 使用 

System.Net.CredentialCache.DefaultNetworkCredentials

property. 属性。 It represents the authentication credentials for the current security context in which the application is running. 它表示运行应用程序的当前安全上下文的身份验证凭据。 Details can be found here . 细节可以在这里找到。

解决方案2
 1  2009-08-10 09:31:08

It seems to be a "double hop" authentication problem. 这似乎是一个“双跳”身份验证问题。 In short, NTLM doesn't alllow more than one "hop" with it's credentials (token). 简而言之,NTLM不会使用它的凭证(令牌)不止一个“跳”。 So user authenticates on server 1 with it's token, and in turn, server 1 tries to send the token to server 2. This won't work, unless Kerberos deleguation is allowed between server 1 and 2. 因此,用户使用它的令牌在服务器1上进行身份验证,然后服务器1尝试将令牌发送到服务器2.这将不起作用,除非服务器1和2之间允许Kerberos删除。

More details here : http://weblogs.asp.net/owscott/archive/2008/08/22/iis-windows-authentication-and-the-double-hop-issue.aspx And here : http://blogs.msdn.com/nunos/archive/2004/03/12/88468.aspx 更多细节在这里: http://weblogs.asp.net/owscott/archive/2008/08/22/iis-windows-authentication-and-the-double-hop-issue.aspx这里: HTTP://博客。 msdn.com/nunos/archive/2004/03/12/88468.aspx

解决方案3
 0  2009-08-10 09:06:46

Perhaps the class 也许是班级 

System.Net.CredentialCache

could be helpfull ... It has the DefaultCredentials and DefaultNetworkCredentials properties that you can use. 可能有用...它具有您可以使用的DefaultCredentials和DefaultNetworkCredentials属性。 Offcourse, you will have to make sure that your application runs under the credentials that you want (that is , the credentials of the current user). 当然,您必须确保您的应用程序在您想要的凭据(即当前用户的凭据)下运行。 This can be done by calling 这可以通过调用来完成 

AppDomain.CurrentDomain.SetPrincipalPolicy (PrincipalPolicy.WindowsPrincipal);

At the start of your program. 在您的计划开始时。

Then, when you initialize the WCF service, you can use the DefaultNetworkCredentials provided by the CredentialCache . 然后,在初始化WCF服务时,可以使用CredentialCache提供的DefaultNetworkCredentials 

channel.Credentials.Windows.ClientCredential = CredentialCache.DefaultNetworkCredentials;
IService1 service = channel.CreateChannel();

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 WCF并传递Windows凭据 - WCF and passing windows credentials 周转基金。 在服务端使用 Windows 凭据 - WCF. Use windows credentials on service side 将 Windows 凭据传递给远程 https WCF 服务 - Pass Windows credentials to remote https WCF service 使用域凭据连接到Windows Phone 8(C#)中的WCF服务 - Connecting to WCF service in Windows Phone 8 (C#) by using domain credentials 使用wsHttpBinding和Message Security与客户端凭据类型窗口负载平衡WCF - load balancing WCF with wsHttpBinding and Message Security with client credentials type windows IIS托管的WCF Rest服务保持提示输入Windows身份验证凭据 - IIS Hosted WCF Rest Service keeeps prompting for Windows Auth Credentials 服务器拒绝了客户端凭据,WCF 作为 Windows 服务 - The server has rejected the client credentials, WCF as Windows Service 从其他WCF服务调用WCF服务时传递Windows凭据 - Pass windows credentials when invoke wcf service from other wcf service 指定用于WCF身份验证的凭据 - Specifying Credentials for WCF Authentication 设置WCF应用程序的凭据? - Setting credentials for a WCF application?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM