My WCF Web Service is written and hosted within my ASP.NET web application. This service will be consumed by the client written in php. How to securing this service? Which is the best pratice for?
1条回答 默认 最新
- dougan4663 2011-07-20 12:12关注
PHP doesn't have native support for any advanced security features. Some of them can be added with some additional frameworks like WSO2 but then you can have a reverse problem because WSO2 offers its own subset of WS-Security and in this subset it offers popular UserName Token Profile with digested password which is in turn not provided in WCF (but can be added).
The simplest security for service exposed to PHP is HTTPS with Basic Authentication (IIS by default offers only Basic Authentication against Windows accounts but with custom HTTP module it will work with any credentials store).
本回答被题主选为最佳回答 , 对您是否有帮助呢?解决 无用评论 打赏 举报