ServiceSecurityContext Class
Represents the security context of a remote party. On the client, represents the service identity and, on the service, represents the client identity.
Assembly: System.ServiceModel (in System.ServiceModel.dll)
The ServiceSecurityContext type exposes the following members.
| Name | Description | |
|---|---|---|
![]() | ServiceSecurityContext(AuthorizationContext) | Initializes a new instance of the ServiceSecurityContext class with the specified authorization parameters. |
![]() | ServiceSecurityContext(ReadOnlyCollection<IAuthorizationPolicy>) | Initializes a new instance of the ServiceSecurityContext class with the collection of policies object. |
![]() | ServiceSecurityContext(AuthorizationContext, ReadOnlyCollection<IAuthorizationPolicy>) | Initializes a new instance of the ServiceSecurityContext class with the specified authorization parameters and collection of policies. |
| Name | Description | |
|---|---|---|
![]() ![]() | Anonymous | Returns an instance of the ServiceSecurityContext class that contains an empty collection of claims, identities, and other context data that is usually used to represent an anonymous party. |
![]() | AuthorizationContext | Gets the authorization information for an instance of this class. The AuthorizationContext contains a collection of ClaimSet that the application can interrogate and retrieve the information of the party. |
![]() | AuthorizationPolicies | Gets the collection of policies associated with an instance of this class. |
![]() ![]() | Current | Gets the current ServiceSecurityContext. |
![]() | IsAnonymous | Gets a value that indicates whether the current client has provided credentials to the service. |
![]() | PrimaryIdentity | Gets the primary identity associated with the current setting. |
![]() | WindowsIdentity | Gets the Windows identity of the current setting. |
| Name | Description | |
|---|---|---|
![]() | Equals(Object) | Determines whether the specified Object is equal to the current Object. (Inherited from Object.) |
![]() | Finalize | Allows an object to try to free resources and perform other cleanup operations before it is reclaimed by garbage collection. (Inherited from Object.) |
![]() | GetHashCode | Serves as a hash function for a particular type. (Inherited from Object.) |
![]() | GetType | Gets the Type of the current instance. (Inherited from Object.) |
![]() | MemberwiseClone | Creates a shallow copy of the current Object. (Inherited from Object.) |
![]() | ToString | Returns a string that represents the current object. (Inherited from Object.) |
The data is part of the SecurityMessageProperty for a message.
Use this class to obtain information about a remote security context at runtime. A security context is created when a client is successfully authenticated and authorized to access a method. When a message is successfully authenticated and authorized, the security information from the client and for the current service instance can be obtained from an instance of this class.
You can retrieve an instance of the ServiceSecurityContext from the Current property of the OperationContext class, or use it from within a service operation method, as shown in the following example.
Parsing a ClaimSet
A common use of the class is to retrieve the current set of claims for the purpose of identifying or authorizing a client when accessing a method. The ClaimSet class contains a collection of Claim objects, and each can be parsed to determine whether a specific claim is present. If the specified claim is provided, authorization can be granted. This functionality is provided by overriding the CheckAccessCore method of the ServiceAuthorizationManager class. For a complete example, see the Authorization Policy Sample.
Cookie Mode and IsAuthenticated
Note that under some circumstances, the IsAuthenticated property of the IIdentity interface returns true even if the remote client is authenticated as an anonymous user. (The PrimaryIdentity property returns an implementation of the IIdentity interface.) The following circumstances must be true for this to occur:
The service uses Windows authentication.
The service allows anonymous logons.
The binding is a customBinding Element.
The custom binding includes a <security> element.
The <security> element includes a secureConversationBootstrap element with the requireSecurityContextCancellation attribute set to false.
The following example uses the ServiceSecurityContext class to provide information about the current security context. The code creates an instance of the StreamWriter class to write the information to a file.
The following example shows an implementation of the CheckAccessCore method that uses the ServiceSecurityContext to parse a set of claims.
Windows 7, Windows Vista SP1 or later, Windows XP SP3, Windows Server 2008 (Server Core not supported), Windows Server 2008 R2 (Server Core supported with SP1 or later), Windows Server 2003 SP2
The .NET Framework does not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.
