wcf security

Authentication

WindowsIdentity(windows认证)

GenericIdentity(用户名/密码认证)

X509Identity（证书认证）

认证后会创建服务安全上下文(ServiceSecurityContext) ServiceSecurityContext.Current

认证后会创建Principal (安全体)包含认证和授权

Thread.CurrentPrincipal存储在线程的TLS里

PrincipalPermissionAttribute 可以加在方法上设置访问权限

Authorization

windows用户组

asp.net roles

自定义

Transfer Security

integrity

privacy

mutual authentication

Transfer Security Mode( Token)

None

Transport(HTTPS,TCP,IPC,MSMQ)

Message(HTTP)

Mixed

Both

Identity Management

身份模拟

posted @ 2014-12-17 17:40 fannet 阅读(130) 评论(0) 收藏举报

刷新页面返回顶部

fannet