如何保护Project Server的WCF服务?
[英]How to secure a WCF service for Project Server?
问题描述
I have a WCF service that collects and return the data from a Project Server database. 
我有一个WCF服务,该服务从Project Server数据库收集并返回数据。 The service will be online, so not everyone should have access to the service. 该服务将在线,因此并非每个人都可以访问该服务。 What kind of security or authentication should I implement ? 我应该实现哪种安全性或身份验证?
1 个解决方案
解决方案1
1 2012-06-06 15:02:21
Integrated Domain Security See MSDN WCF Security Page 集成域安全性,请参见MSDN WCF安全性页面
I would run the application in a group or as user with the minimum required privileges. 我将以最小的所需特权在一个组中或以用户身份运行该应用程序。
http://msdn.microsoft.com/en-us/library/ms735093.aspx http://msdn.microsoft.com/en-us/library/ms735093.aspx
If the machines are in a Virtual Machine you could even technically create a named pipe end point and then expose it to the children machines... but this is more advanced and you lose some of the options with TCP bindings. 如果这些机器在虚拟机中,则您甚至可以从技术上创建一个命名管道端点,然后将其公开给子机...但这是更高级的,您会丢失一些使用TCP绑定的选项。
You could also create a loop back adapter on the Host Machine and then use that adapter to forward to the service end point depending on origin. 您还可以在主机上创建回送适配器,然后使用该适配器根据源将其转发到服务端点。 You would then expose the adapter to the children.. 然后,您可以将适配器暴露给孩子。
It all depends on how important security is and what you are trying to achieve in the end... eg is mobile going to be a concern... 这完全取决于安全性的重要性以及最终要实现的目标……例如,移动性将成为一个问题……
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.