Custom Credential and Credential Validation

Security in Windows Communication Foundation (WCF) is based on the exchange of credentials between services and clients. Most security scenarios can be satisfied using common credential types, such as Windows (Kerberos), username and passwords, and certificates. However, if a new type of credential is required, the topics in this section explain how to handle and validate new types.

In This Section

• How to: Create a Service that Employs a Custom Certificate Validator
  Explains how to customize WCF validation by inheriting from the X509CertificateValidator class.

• Walkthrough: Creating Custom Client and Service Credentials
  Demonstrates how to extend the ClientCredentials and ServiceCredentials classes to accommodate new credential types. This is first in a series of topics that enable creation of custom credential types.

• How to: Create a Custom Security Token Provider
  Explains how to create a security token provider to handle new credential types and return new tokens for the credential. This is the second topic in the series.

• How to: Create a Custom Security Token Authenticator
  Explains how to create a custom authenticator to authenticate a new credential type. This is the third topic in the series.

Reference

System.ServiceModel.Security

System.IdentityModel.Claims

System.IdentityModel.Policy

System.IdentityModel.Tokens

System.IdentityModel.Selectors

X509CertificateValidator

ClientCredentials

ServiceCredentials

Related Sections

Authentication

Federation and Issued Tokens

Authorization

See Also

Other Resources

Windows Communication Foundation Security

Build Date: 2011-06-25