- Programming WCF Services, Second Edition
- Dedication
- A Note Regarding Supplemental Files
- Forewords
- Preface
- 1. WCF Essentials
- What Is WCF?
- Services
- Addresses
- Contracts
- Hosting
- Bindings
- Endpoints
- Metadata Exchange
- Client-Side Programming
- Programmatic Versus Administrative Configuration
- WCF Architecture
- Working with Channels
- Transport-Level Sessions
- Reliability
- 2. Service Contracts
- 3. Data Contracts
- 4. Instance Management
- Behaviors
- Per-Call Services
- Per-Session Services
- Singleton Service
- Demarcating Operations
- Instance Deactivation
- Durable Services
- Throttling
- 5. Operations
- 6. Faults
- 7. Transactions
- The Recovery Challenge
- Transactions
- Transaction Propagation
- Transaction Protocols and Managers
- The Transaction Class
- Transactional Service Programming
- Explicit Transaction Programming
- Service State Management
- Instance Management and Transactions
- Callbacks
- 8. Concurrency Management
- Instance Management and Concurrency
- Service Concurrency Modes
- Instances and Concurrent Access
- Resources and Services
- Resource Synchronization Context
- Service Synchronization Context
- Custom Service Synchronization Contexts
- Callbacks and Client Safety
- Callbacks and Synchronization Contexts
- Asynchronous Calls
- 9. Queued Services
- 10. Security
- Authentication
- Authorization
- Transfer Security
- Identity Management
- Overall Policy
- Scenario-Driven Approach
- Intranet Application Scenario
- Internet Application Scenario
- Business-to-Business Application Scenario
- Anonymous Application Scenario
- No Security Scenario
- Scenarios Summary
- Declarative Security Framework
- Security Auditing
- A. Introduction to Service-Orientation
- B. Headers and Contexts
- C. Publish-Subscribe Service
- D. Code-Access Security
- E. Generic Interceptor
- F. WCF Coding Standard
- G. ServiceModelEx Catalog
- CollectionExtensions
- ArrayExtensions
- AppDomainHost
- InProcFactory
- ServiceHost<T>
- MetadataHelper
- DataContractSerializer<T>
- DataTableHelper
- ServiceThrottleHelper
- IInstanceStore<ID,T>
- FileInstanceStore<ID,T>, FilePersistenceProvider, FilePersistenceProviderFactory
- MemoryProvider, MemoryProviderFactory
- TransactionalMemoryStore<ID,T>, TransactionalMemoryProvider, TransactionalMemoryProviderFactory
- TransactionalInstanceStore<ID,T>, TransactionalInstanceProvider, TransactionalInstanceProviderFactory
- InstanceContext<T>, DuplexClientBase<T,C>, DuplexChannelFactory<T,C>
- WsDualProxyHelperCallbackBaseAddressBehaviorAttribute
- DebugHelper
- ErrorHandlerHelper
- ErrorHandlerBehaviorAttribute, CallbackErrorHandlerBehaviorAttribute
- ILogbookManager, LogbookManagerClient, LogbookManager
- BindingRequirementAttribute
- ResourceManager, TransactionalLock
- Transactional<T>
- TransactionalCollection<C,T>
- TransactionalArray<T>, TransactionalDictionary<K,T>, TransactionalLinkedList<T>, TransactionalList<T>, TransactionalQueue<T>, TransactionalSortedDictionary<K,T>, Tr
- TransactionalBehaviorAttribute
- FormHost<F>
- SafeButton, SafeLabel, SafeListBox, SafeProgressBar, SafeStatusBar, SafeTextBox, SafeTrackBar
- ThreadPoolSynchronizer, ThreadPoolBehaviorAttribute, CallbackThreadPoolBehaviorAttribute, ThreadPoolHelper
- AffinitySynchronizer, ThreadAffinityBehaviorAttribute, CallbackThreadAffinityBehaviorAttribute, HostThreadAffinity
- PrioritySynchronizer, PriorityClientBase<T>, PriorityContext, PriorityCallsBehaviorAttribute
- QueuedServiceHelper
- ResponseClientBase<T>, ResponseScope<T>, ResponseContext
- CredentialsManager, AspNetSqlProviderService
- SecureClientBase<T>, SecureDuplexClientBase<T,C>, SecurityBehaviorAttribute, SecurityHelper, ServiceSecurity
- HeaderClientBase<T,H>, GenericContext<T>
- ContextClientBase<T>, ContextManager
- NetNamedPipeContextBinding, NetNamedPipeContextBindingElement, NetNamedPipeContextBindingCollectionElement
- PersistentSubscriptionServiceClient, IPersistentSubscriptionService, ISubscriptionService, PersistentSubscription, PublishService<T>, SubscriptionManager<T>, PersistentSubscriptionManager
- PartialTrustClientBase<T>, PartialTrustDuplexClientBase<T,C>, CodeAccessSecurityHelper
- GenericInvoker, OperationInterceptorBehaviorAttribute, ServiceInterceptorBehaviorAttribute
- InterceptorClientBase<T>
- SecurityCallFrame, SecurityCallStack, SecurityCallStackContext, SecurityCallStackClientBase<T>, SecurityCallStackInterceptor, OperationSecurityCallStackAttribute, SecurityCallStackBehaviorAttrib
- Index
- About the Author
- Colophon
- Copyright
Always protect the message and provide for message confidentiality and integrity.
In an intranet, you can use Transport security as long as the protection level is set to
EncryptAndSign.In an intranet, avoid impersonation. Set the impersonation level to
TokenImpersonationLevel.Identification.When using impersonation, have the client use
TokenImpersonationLevel.Impersonation.Use the declarative security framework and avoid manual configuration.
Never apply the
PrincipalPermissionattribute directly on the service class://Will always fail: [PrincipalPermission(SecurityAction.Demand,Role = "...")] public class MyService : IMyContract {...}Avoid sensitive work that requires authorization at the service constructor.
Avoid demanding a particular user, with or without demanding a role:
//Avoid: [PrincipalPermission(SecurityAction.Demand,Name = "John")] public void MyMethod( ) {...}Do not rely on role-based security in the client's callback operations.
With Internet clients, always use Message security.
Allow clients to negotiate the service certificate (the default).
Use the ASP.NET providers for custom credentials.
When developing a custom credentials store, develop it as a custom ASP.NET provider.
Validate certificates using peer trust.
Strive to run the client under partial trust. Grant the client permission only to:
Execute
Display the user interface (if required)
Connect to the service
Obtain local credentials
When you own the service host environment, run the service and the host under full trust. Grant Microsoft and ECMA full trust, but remove all other code groups and grant them no permissions.
When hosting in partial trust, grant the host and the service permission only to:
Execute
Accept client calls
Obtain local credentials
Authenticate and authorize the client
Access local resources if required
-
No Comment