i have a WCF service(hosted in IIS) with the following configuration: basichttpbinding MTOM Streaming(for file upload and download) now i want to implement a security system where i receive username/password only once. after which i want to issue a custom generated token which should be used for all subsequent calls to service. i also want to control the expiration and renewal of the issued token. what should be my approach in order to acheive this? please advice, if possible with some code sample.
Hi Sarasam, You need to use Federation binding and implement an STS that will issue the token. You can then use an authorization policy and/or authorization manager with your specific service, and with the service you can define MTOM for encoding. Priya On Apr 20, 2:28 am, Sarasam wrote: > i have a WCF service(hosted in IIS) with the following configuration: > basichttpbinding > MTOM > Streaming(for file upload and download) > now i want to implement a security system where i receive username/password > only once. after which i want to issue a custom generated token which should > be used for all subsequent calls to service. i also want to control the > expiration and renewal of the issued token. what should be my approach in > order to acheive this? > please advice, if possible with some code sample.
