Showing results for Authentication - OData

Jan 21, 2011
0
0

Connecting to an OAuth 2.0 protected OData Service

DB Blogs
DB Blogs

This post creates a Windows Phone 7 client application for the OAuth 2.0 protected OData service we created in the last post. Prerequisites: To run this code you will need: Our application: Our application is a very basic Windows Phone 7 (WP7) application that allows you to browse favorites and if logged in create new ...

WCF Data ServicesAuthenticationASP.NET
Jan 20, 2011
0
0

OData and OAuth – protecting an OData Service using OAuth 2.0

DB Blogs
DB Blogs

In this post you will learn how to create an OData service that is protected using OAuth 2.0, which is the OData team’s official recommendation in these scenarios:  So if your scenarios is one of the above or some slight variation we recommend that you use OAuth 2.0 to protect your service, it provides the utmost flexibility and...

ODataWCF Data ServicesAuthentication
Aug 19, 2010
1
0

OData and Authentication – Part 8 – OAuth WRAP

DB Blogs
DB Blogs

OAuth WRAP is a claims based authentication protocol supported by the AppFabric Access Control (ACS) which is part of Windows Azure. But most importantly it is REST (and thus OData) friendly too. The idea is that you authenticate against an ACS server and acquire a Simple Web Token or SWT – which contains signed claims about identity / roles / ...

ODataAuthenticationHttpModule
Jul 21, 2010
0
0

OData and Authentication – Part 7 – Forms Authentication

DB Blogs
DB Blogs

Our goal in this post is to re-use the Forms Authentication already in a website to secure a new Data Service. To bootstrap this we need a website that uses Forms Auth. Turns out the MVC Music Store Sample is perfect for our purposes because: The rest of this post assumes you’ve downloaded and installed the MVC Music ...

ODataAuthenticationForms Authentication
Jul 21, 2010
0
0

OData and Authentication – Part 6 – Custom Basic Authentication

DB Blogs
DB Blogs

You might remember, from Part 5, that Basic Authentication is built-in to IIS. So why do we need ‘Custom’ Basic Authentication? Well if you are happy using windows users and passwords you don’t. That’s because the built-in Basic Authentication, uses the Basic Authentication protocol, to authenticate against the windows user ...

ODataAuthenticationData Services
Jul 19, 2010
0
0

OData and Authentication – Part 5 – Custom HttpModules

DB Blogs
DB Blogs

In the last post we saw how to add custom authentication inside your Data Service using the ProcessingRequest event. Unfortunately that approach means authentication is not integrated or shared with the rest of your website. Which means for all but the simplest scenarios a better approach is needed: HttpModules. HttpModules can do all sort of ...

ODataAuthenticationData Services
Jul 19, 2010
0
0

OData and Authentication – Part 4 – Server Side Hooks

DB Blogs
DB Blogs

If you secure an OData Service using Windows authentication – see Part 2 to learn how – everything works as expected out of the box. What however if you need a different authentication scheme? Well the answer as always depends upon your scenario. Broadly speaking what you need to do depends upon how your Data Service is hosted. You ...

ODataAuthenticationData Services
May 24, 2010
0
0

OData and Authentication – Part 3 – ClientSide Hooks

DB Blogs
DB Blogs

So far in this series we’ve looked at Windows Authentication. For both Windows and Basic Authentication, Data Services does the authentication handshake and subsequent sending of authentication headers – all without you directly setting a http header. It can do this because there is a higher level abstraction – the Credentials ...

ODataAuthenticationOAuth
May 10, 2010
0
0

OData and Authentication – Part 2 – Windows Authentication

DB Blogs
DB Blogs

Imagine you have an OData Service installed on your domain somewhere, probably using the .NET Data Services producer libraries, and you want to authenticate clients against your corporate active directory. How do you do this? On the Serverside First on the IIS box hosting your Data Service you need to turn on integrated security, and you may ...

ODataAuthenticationSilverlight
May 10, 2010
0
0

OData and Authentication – Part 1

DB Blogs
DB Blogs

Here on the Data Services team we hear many people ask about authentication. Questions like: The answer to these questions, depends a lot upon scenario, in fact each authentication scenario presents unique challenges: As you can see lots of questions. And there is a real risk that people will get their answer wrong...

ODataAuthentication