12,165
社区成员
发帖
与我相关
我的任务
分享如何实现Web Service的认证?
我现在做的Web Service都是可以在Windows应用程序发出SOAP请求,就可以返回值了。
如果我想实现身份认证,并且实现发送的信息加密,应该怎么做呢?
如果我想实现身份认证,并且实现发送的信息加密,应该怎么做呢?
...全文
请发表友善的回复…
发表回复
楠爵 2005-03-13
- 打赏
- 举报
mark
lookie 2004-12-30
- 打赏
- 举报
.Net Passpart 是将用户密码通过WebService发到一台服务器上,然后返回证书,用户凭着这个证书享受相关的服务。这样的话做起来就比较的麻烦
broadury 2004-12-30
- 打赏
- 举报
To stillwaterrunsdeep:
Why,有更好的方法吗?
Why,有更好的方法吗?
yuhongwei 2004-12-30
- 打赏
- 举报
学习
stillwaterrunsdeep 2004-12-29
- 打赏
- 举报
常规方法了。不过也不安全。
qozms 2004-12-29
- 打赏
- 举报
在web service中,定义自己的SoapHeader
using System;
using System.Web.Services.Protocols;
namespace WSSecurity
{
/// <summary>
/// Summary description for AuthHeader.
/// </summary>
public class AuthHeader : SoapHeader
{
public string userName;
public string password;
public AuthHeader()
{
//
// TODO: Add constructor logic here
//
}
}
}
----------
[WebMethod]
[SoapHeader("myHeader")]
public string HelloWorld()
{
string returnValue = string.Empty;
if(myHeader.userName == "ok_name")
{
if(myHeader.password == "ok_password")
{
returnValue = "Hello World";
}
else
{
returnValue = "error password";
}
}
else
{
returnValue = "error userName";
}
return returnValue;
}
在webForm中
private void Button1_Click(object sender, System.EventArgs e)
{
localhost.Service1 ws = new localhost.Service1();
localhost.AuthHeader mySoapHeader = new localhost.AuthHeader();
// mySoapHeader.userName = "ok_name";
mySoapHeader.userName = "err_name";
mySoapHeader.password = "ok_password";
// mySoapHeader.password = "error_password";
ws.AuthHeaderValue = mySoapHeader; //
Response.Write(ws.HelloWorld());
}
using System;
using System.Web.Services.Protocols;
namespace WSSecurity
{
/// <summary>
/// Summary description for AuthHeader.
/// </summary>
public class AuthHeader : SoapHeader
{
public string userName;
public string password;
public AuthHeader()
{
//
// TODO: Add constructor logic here
//
}
}
}
----------
[WebMethod]
[SoapHeader("myHeader")]
public string HelloWorld()
{
string returnValue = string.Empty;
if(myHeader.userName == "ok_name")
{
if(myHeader.password == "ok_password")
{
returnValue = "Hello World";
}
else
{
returnValue = "error password";
}
}
else
{
returnValue = "error userName";
}
return returnValue;
}
在webForm中
private void Button1_Click(object sender, System.EventArgs e)
{
localhost.Service1 ws = new localhost.Service1();
localhost.AuthHeader mySoapHeader = new localhost.AuthHeader();
// mySoapHeader.userName = "ok_name";
mySoapHeader.userName = "err_name";
mySoapHeader.password = "ok_password";
// mySoapHeader.password = "error_password";
ws.AuthHeaderValue = mySoapHeader; //
Response.Write(ws.HelloWorld());
}
qozms 2004-12-29
- 打赏
- 举报
采用soap头认证
传输用户和密码时用ssl
传输用户和密码时用ssl
