Gautham Janardhan
asked on
Allow insecure transport in Silverlight 4.0
Hi,
I'm trying to use UserNamePasswordValidator for custom validation of user name and password in a wcf service call from Silverlight 4.0 by using custom binding, Http transport with TransportSecurityBindingEl
Is this possible in SL 4.0? I know this can be done between a windows console application and the service. But in SL i cant find the Allow insecure transport attribute on TransportSecurityBindingEl
Server Config
<bindings>
<customBinding>
<binding name="InsecureCredentials"
<security authenticationMode="UserNa
<textMessageEncoding messageVersion="Soap11" />
<httpTransport />
</binding>
</customBinding>
</bindings>
Client Custom Binding
public class CustomHttpMessageInspector
{
public CustomHttpMessageInspector
{
}
public CustomHttpMessageInspector
{
ChannelBindingElement = newMessageInspectorBinding
ChannelBindingElement.Mess
}
publicMessageInspectorBind
{
get;
set;
}
publicoverrideBindingEleme
{
BindingElementCollection bindingElements = base.CreateBindingElements
bindingElements.Add(Channe
HttpTransportBindingElemen
transport.MaxReceivedMessa
transport.MaxBufferSize = 2147483647;
TransportSecurityBindingEl
security.IncludeTimestamp = true;
TextMessageEncodingBinding
bindingElements.Add(securi
bindingElements.Add(elemen
bindingElements.Add(transp
return
bindingElements;
}
}
Thanks
Gautham
I'm trying to use UserNamePasswordValidator for custom validation of user name and password in a wcf service call from Silverlight 4.0 by using custom binding, Http transport with TransportSecurityBindingEl
Is this possible in SL 4.0? I know this can be done between a windows console application and the service. But in SL i cant find the Allow insecure transport attribute on TransportSecurityBindingEl
Server Config
<bindings>
<customBinding>
<binding name="InsecureCredentials"
<security authenticationMode="UserNa
<textMessageEncoding messageVersion="Soap11" />
<httpTransport />
</binding>
</customBinding>
</bindings>
Client Custom Binding
public class CustomHttpMessageInspector
{
public CustomHttpMessageInspector
{
}
public CustomHttpMessageInspector
{
ChannelBindingElement = newMessageInspectorBinding
ChannelBindingElement.Mess
}
publicMessageInspectorBind
{
get;
set;
}
publicoverrideBindingEleme
{
BindingElementCollection bindingElements = base.CreateBindingElements
bindingElements.Add(Channe
HttpTransportBindingElemen
transport.MaxReceivedMessa
transport.MaxBufferSize = 2147483647;
TransportSecurityBindingEl
security.IncludeTimestamp = true;
TextMessageEncodingBinding
bindingElements.Add(securi
bindingElements.Add(elemen
bindingElements.Add(transp
return
bindingElements;
}
}
Thanks
Gautham
Hi, as i know insecure transport is default for silverlight (securityMode=None), so you don't need any special parameter.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
for this behavior in silverlight's BasicHttpSecurityMode is
"TransportCredentialOnly" - This mode provides only HTTP-based client authentication. It does not provide message integrity or confidentiality.msdn
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
This cant be done in SL