forms authentication - WCF CustomRoleProvider and Principle Permissions -

-

edit: think issue may related issue below i'm using ssl principalpermission.demand() failing once wcf service moved ssl

i'm working on secure set of web services, i've implemented customroleprovider , custommembershipprovider in order authenticate users.

this works great, restrict access majority of service calls if user not authenticated.

i planned on using following accomplish this

[principalpermission(securityaction.demand, authenticated=true)]

however, doesn't seem detect when user authenticated , throws security exception. i'm not sure i've done wrong.

public class custommembershipprovider : membershipprovider {     public string usertype;      public override bool validateuser(string username, string password)     {            //custom logic work out if user exists , password correct             //if user exists , password matches populated user            //object containing username , usertype              if (user == null)             {                 return false;             }             else             {                 return true;             }         }     }

within authentication service call check if membership provider returns true , sets forms authentication cookie.

        if (membership.validateuser(username, password))         {             formsauthentication.setauthcookie(username, false);         }

i've set service authorization in web config follows:

    <behavior name="secureauthservicebehavior">       <serviceauthorization principalpermissionmode="useaspnetroles" roleprovidername="customroleprovider"/>       ....       </behaviour>

any appreciated, thanks

edit:

i've done further investigation issue , discovered principal being set correctly. have following service method, within principal , check if user in correct role, doing tag @ start doing.

[principalpermission(securityaction.demand,role="a" )] public bool dowork() {     iprincipal p = httpcontext.current.user;     if (p.isinrole("a"))     {         return true;     }     else     {         return false;      } }

this method throws securityexception every time if comment out principal permission @ start method works , returns true.

principalpermission checks thread.currentprincipal, not httpcontext.current.user, that's why principalpermission attribute commented out dowork() returns true, line present returns false (because thread.currentprincipal isn't set anything).

in constructor of service class set thread.currentprincipal = httpcontext.current.user , match correctly. principalpermission attribute blocks/allows expect to.


Comments

Post a Comment

Popular posts from this blog

delphi - How to convert bitmaps to video? -

-
Image
my application creates images fractals , love feeling of 'flying' around fractal. once saved 2000 bitmaps file , created avi using premiere. experience rather frustrating though succeeded in creating movie. spectacular. of course want create video application. don't care niftyness of codec, compression or whatever. want have video can replay on systems. in past have tried never succeeded. triggered question alas not ffmpeg running. update i decided adapt question , put bounty it. have seen several solutions attractive (because it's simple) seems me taviwrite. tried taviwriter did not succeed. in procedure taviwriter.write; function call around line 370 avierr := avisavev(s, // pchar(filename), nil, // file handler nil, // callback nstreams, // number of streams streams, compoptions); // compress options
Read more

jasper reports - Fixed header in Excel using JasperReports -

-
how can create excel report fixed header using japserreports? mean need header fixed when scroll excel file. this possible adding couple properties in jrxml file each report. take @ advanced excel features freeze panes. if wanted freeze after first column header (down left side basically) this: <statictext> <reportelement style="sans_bold" mode="opaque" x="0" y="60" width="104" height="20" forecolor="#ffffff" backcolor="#666666"> <property name="net.sf.jasperreports.export.xls.auto.filter" value="start"/> <property name="net.sf.jasperreports.export.xls.column.width" value="110"/> <property name="net.sf.jasperreports.export.xls.freeze.column.edge" value="left"/> </reportelement> &
Read more

python - ('The SQL contains 0 parameter markers, but 50 parameters were supplied', 'HY000') or TypeError: 'tuple' object is not callable -

-
import pyodbc,nltk,array cnxn = pyodbc.connect('driver={mysql odbc 5.1 driver};server=127.0.0.1;port=3306;database=information_schema;user=root; password=1234;option=3;') cursor = cnxn.cursor() cursor.execute("use collegedatabase ;") cursor.execute("select * sampledata ; ") cnxn.commit() s=[] j=[] x=[] words = [] w = [] sfq = [] pos=[] entry in cursor: s.append(entry.injury_type),j.append(entry.injury_desc) nltk.tokenize import punktwordtokenizer nltk.corpus import stopwords tokenizer = punktwordtokenizer() english_stops = set(stopwords.words('english')) in range(0,26): # filter stop words tokenizer.tokenize(j[i]) w.append([word word in tokenizer.tokenize(j[i]) if word not in english_stops]) in range(0 , 26):#converting tokenzied text ito string sfq.append(" ".join(w[a])) replacers import regexpreplacer replacer = regexpreplacer() in range (0,26):#pos tagging replacer.repl
Read more