管理对 WCF 数据服务的访问权限
在日内瓦的techdays之后,我对WCF数据服务充满期待,但我有几个问题。我实际上有一个示例演示,它允许我从数据库中检索数据。
它运行得很好,我对速度感到惊讶:)。
我看到我必须声明我们可以读取/修改的内容:
config.SetEntitySetAccessRule("Users", EntitySetRights.AllRead);
但是在这个 WCF 服务中,我没有看到任何有关身份验证的信息,所以这是我的问题:
- 我怎样才能说谁可以访问我的服务,以及使用哪种身份验证(Windows,自定义,SSL证书,...)
- 我怎么能说用户组A有权读取我的收藏,而用户组B有权编辑它呢?
谢谢你!
After techdays in geneva, I'm looking forward about WCF Data Service, and I've several questions. I've actually a sample demo which permits me to retrive data from my database.
It is working quite good and I'm surprised by the speed :).
I saw that I've to declare what we can read/modify:
config.SetEntitySetAccessRule("Users", EntitySetRights.AllRead);
But In this WCF service I don't see anything about authentication, so here are my questions:
- How can I say who can access to my service, and with which authentication(Windows, custom, SSL cert, ...)
- How can I say that the user group A has the right to read my collection, and the user group B has the right to edit it?
Thank you!
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
如果您需要对数据身份验证进行更精细的控制,则需要使用经典的 WCF 身份验证方法对用户进行身份验证,并使用查询和更改拦截器来控制谁可以读取或更改您的数据。
有关查询和更改拦截器的更多信息,请访问
http://msdn.microsoft.com /en-us/library/dd744842.aspx
谢谢
巴勃罗.
If you need more granular control over authentication on your data, you need to authenticate your users with classic WCF authentication methods and use Query and Change Interceptors to control who can read or change your data.
More information about the Query and Change interceptors here,
http://msdn.microsoft.com/en-us/library/dd744842.aspx
Thanks
Pablo.