Defines a credential policy to be used for resource requests that are made using WebRequest and its derived classes.
Assembly: System (in System.dll)
This policy allows credentials to be sent only if the requested resource is in the same domain as the client that is making the request. For many applications this is the optimal policy because it prevents network credentials from being sent with requests for resources that are not on the intranet.
ICredentialPolicy policies are invoked only if the WebRequest or the WebProxy that is associated with the request has credentials that are not a null reference (Nothing in Visual Basic). Setting this policy has no effect on requests that do not specify credentials.
Use the AuthenticationManager.CredentialPolicy property to set the policy. The IAuthenticationModule that handles authentication for the request will invoke the ShouldSendCredential method before performing the authentication. If the requested resource is in a different domain than the client, the ShouldSendCredential method returns false, and authentication is not performed.
This policy affects all instances of WebRequest with non-null credentials in the current application domain. The policy cannot be overridden on individual requests.
The following code example demonstrates creating an instance of and using it to set the credential policy for the application domain.
Windows 7, Windows Vista, Windows XP SP2, Windows XP Media Center Edition, Windows XP Professional x64 Edition, Windows XP Starter Edition, Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows Server 2000 SP4, Windows Millennium Edition, Windows 98
The .NET Framework and .NET Compact Framework do not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.