Re: Forward Credentials from ASP.NET Web-application to ASP.NET Web-Service?

From: Joe Kaplan \(MVP - ADSI\) (joseph.e.kaplan_at_removethis.accenture.com)
Date: 06/22/04 

Date: Mon, 21 Jun 2004 22:34:33 -0500

Using Windows Integrated authentication in the ASP.NET application, this can
be done if you use impersonation in the ASP.NET app and enabled Kerberos
delegation. Kerberos delegation allows the token that IIS generates on the
ASP.NET box to hop to the machine on the web services box.

There are a bunch of references to Kerberos delegation in the MS Knowledge
Base. Kerberos can be tricky, so I suggest you read up on it.

Also, if you use Basic Authentication in the ASP.NET application, it is
trivially easy to get the user's username and password directly from the
request headers or server variables and pass those directly to your proxy
class.

HTH,

Joe K.

"Sean Dowling" <nyq2000@hotmail.com> wrote in message
news:606b339b.0406211757.4c6fab57@posting.google.com...
> Hello,
> I have an ASP.NET web-application using Windows Based authentication
> that references a web-service to do business logic type things. I
> would like to secure the web-service with Windows Authentication as
> well and would like to forward the credentials from the original
> web-request (to the web-form) on to the web-service. I can get the
> WindowsPrincipal / Identity of the requesting user but the generated
> proxy for the web-service requires a "NetworkCredentials". If I use:
>
> webservice.Credentials =
> System.net.CredentialsCache.DefaultCredentials
>
> the web-service authenticates the request with the ASPNET user (which
> makes sense)
>
> I don't know how to create credentials using the WindowsPrincipal (or
> even if this can be done?). Do I need to somehow create the
> XML-Web-service request myself using the base classes?
>
> Help! Thanks

Relevant Pages

  • Forward Credentials from ASP.NET Web-application to ASP.NET Web-Service?
    ... I have an ASP.NET web-application using Windows Based authentication ... that references a web-service to do business logic type things. ... XML-Web-service request myself using the base classes? ...
    (microsoft.public.dotnet.security)
  • Re: Change in ASP.Net authentication between Win2000 and Win2003
    ... > is turning on/off Kerberos is occuring. ... It control how IE deals with "Authentication: ... when you put IIS6 in a domain and have "Integrated Windows Authentication" ...
    (microsoft.public.windows.server.security)
  • Re: Change in ASP.Net authentication between Win2000 and Win2003
    ... > is turning on/off Kerberos is occuring. ... It control how IE deals with "Authentication: ... when you put IIS6 in a domain and have "Integrated Windows Authentication" ...
    (microsoft.public.inetserver.iis.security)
  • Re: Need help configuring Wireless Connection profile
    ... and I can only use the intel OR windows utility, not both at the same time. ... Windows authentication for all users,4129,LRG\ryanv,4149,Wireless WPA2 ... SMALL BUSINESS SERVER: ... STEP #1 Install Certificate Services ...
    (microsoft.public.windowsxp.general)
  • Re: form authentication and webservices
    ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... We will be using Windows Authentication on the Web Services side (same ... Dominick Baier ...
    (microsoft.public.dotnet.framework.aspnet.security)