Last post Apr 06, 2016 02:15 AM by Yohann Lu
Apr 05, 2016 07:53 AM|siva1254|LINK
I have legacy WCF services.
The client application gets enhanced, so added an Web API layer for new functionality, having a facade layer to consumes the legacy WCF service.
In web api layer, token based authentication got implemented, want to make the legacy WCF call secured, understood it is complex to implement token authentication in WCF Service.
What are the option I have to authenticate the calls between the Web API and WCF Service.
I appreciate your valuable inputs.
Apr 05, 2016 01:45 PM|Khanna Gaurav|LINK
You can authenticate with Username and Password
Or you can also refer following link
Apr 06, 2016 02:15 AM|Yohann Lu|LINK
As far as I know, a token is a piece of data which is created by a server, and which contains enough data to identify a particular user. The process starts by allowing users to enter their username and password which accessing a service. Once the user provides
the username/password, a token is issued which allows users to fetch a specific resource - without using their username and password every time. This token is sent to the server with each request made by the client and contains all necessary information to
validate a user’s request.
You can refer the following steps to implement token authentication in WCF Service and Web API.
1. For first call user will be validated with Username and Password.
2. If the user is valid, then one “Token” will be generated at service side and it will be returned to the client.
3. The client will add this Token to “MessageHeader” while making the next call to service.
4. The service will read “MessageHeader” to validate passed “Token” by the client.
5. If it is valid Token then service will allow to access data.
The more detailed information about Token based authentication in WCF service:
Securing ASP.NET Web API using Token Based Authentication and using it in Angular.js application: