Authentication using Constrained Delegation w/Protocol Transition

From: Paul (pbrophy_at_gmail.com)
Date: 06/29/05 

Date: 29 Jun 2005 05:21:03 -0700

I have an intranet site set up using integrate windows authentication
and Constrained Delegation w/Protocol Transition to allow domain users
to access the site from the corporate lan or from the internet via
https (using IE, Firefox, or Netscape 7+).

I have 2 versions of a WSS abstraction that is used for
accessing/managing sharepoint documents via the intranet site.
One uses web services and the sharepoint object model while the other
uses FrontPage RPC. The web services implementation works well for IE,
Firefox & Netscape 7+ users logged on to the domain (behind the
firewall or from the outside world via https).

The FpRpc version works fine during development on my local machine(web
server = http://localhost, WSS server = production server) but fails
with a 401 when the browser is not running on the same machine as the
web server. Setting the credentials in web request (see code below) for
the FpRpc does not prevent the 401.

Is there some juju I'm missing or should I just move the FpRpc code
into the web service so its running in the same application space as
sharepoint? I was hoping to use FpRpc INSTEAD of the web services, but
that is looking less likely.

Thanks
Paul

/*==== set credentials in web request ==== */

HttpWebRequest webRequest1 =
(HttpWebRequest)WebRequest.Create(targetUrl);
webRequest1.Method = "POST";
webRequest1.AllowWriteStreamBuffering=true;
webRequest1.ProtocolVersion=HttpVersion.Version11;
webRequest1.Credentials =
System.Net.CredentialCache.DefaultCredentials;
webRequest1.PreAuthenticate = true;
webRequest1.ContentType = "application/x-www-form-urlencoded";
webRequest1.Headers.Add("X-Vermeer-Content-Type",
"application/x-www-form-urlencoded");

Relevant Pages

  • Re: Windows Authentication, Single sign on and Active Directory
    ... your web server is probably a workgroup mode machine. ... Co-author of "The .NET Developer's Guide to Directory Services ... web service proxy client fails to connect due to authentication failure ... Windows authentication on the web services. ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: How to return a user-defined data type object from a webservice?
    ... your client ... object coming from the server via the web service is in a different ... John Saunders | MVP - Windows Server System - Connected System Developer ... It's just not how Web Services works. ...
    (microsoft.public.dotnet.framework.webservices)
  • Re: Windows Authentication, Single sign on and Active Directory
    ... web service proxy client fails to connect due to authentication failure ... the web services anyway, as it is generally important to protect any ... web server is also a member of the domain). ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Designing .NET applications
    ... I prefer logic assembly in a server. ... Imagine, you develop an object-oriented application, and business components ... Because I think that web services doesn't keep data: ... >> same client or business layer is running in the server, ...
    (microsoft.public.dotnet.distributed_apps)
  • Re: .NET & Java Publish-Subscribe pattern
    ... If you go the web services route, remember to use only core types (types ... You may want to think about using SQL Server in all locations, ... and several clients in different cities running linux servers ... service clients on each linux server calling webmethods on the .NET2.0/ ...
    (microsoft.public.dotnet.framework.webservices)