How does WCF RIA Services handle authentication/authorization/security?

Posted by Edward Tanguay on Stack Overflow See other posts from Stack Overflow or by Edward Tanguay
Published on 2010-03-16T08:00:39Z Indexed on 2010/03/16 8:06 UTC
Read the original article Hit count: 406

Filed under:

wcf-ria-services

|

security

|

authenication

|

authorization

|

AJAX

Since no one answered this question:

What issues to consider when rolling your own data-backend for Silverlight / AJAX on non-ASP.NET server?

Let me ask it another way:

How does WCF RIA Services handle authentication/authorization/security at a low level?

e.g. how does the application on the server determine that the incoming http request to change data is coming from a valid client and not from non-desirable source, e.g. a denial-of-service bot?

© Stack Overflow or respective owner

Related posts about wcf-ria-services

How to eager load in WCF Ria Services/Linq2SQLDomainModel

as seen on Stack Overflow - Search for 'Stack Overflow'
I have a databound grid at my view (XAML) and the Itemsource points to a ReportsCollection. The Reports entity has three primitives and some complex types. These three are shown as expected at datagrid. Additionally the Reports entity has a property of type Store. When loading Reports via GetReports… >>> More
WCF Ria Services For Real

as seen on Dot net Slackers - Search for 'Dot net Slackers'
In my previous post I discussed creating the database and tables for the Silverlight HVP configuration data. All that was great, and worked just dandy until it was time to get the data from the database server to the application running on the client. But, I thought, How hard can it be? … >>> More
WCF Ria Services For Real

as seen on Dot net Slackers - Search for 'Dot net Slackers'
In my previous post I discussed creating the database and tables for the Silverlight HVP configuration data. All that was great, and worked just dandy until it was time to get the data from the database server to the application running on the client. But, I thought, How hard can it be? … >>> More
Visual Studio RTM, Silverlight 4 RTM and WCF RIA Services download links

as seen on Geeks with Blogs - Search for 'Geeks with Blogs'
Its been a long time since I blogged. Primarily due to Tech Ed India, the ongoing Great Indian Developer Summit (GIDS 2010) and the related travels. However, here is a quick post with a few updates. Visual Studio 2010 RTMed in India during Tech Ed. We had the privilege of having Soma our Senior… >>> More
Visual Studio 2010 RC – Silverlight 4 and WCF RIA Services Development - Updates from MIX Anno

as seen on Geeks with Blogs - Search for 'Geeks with Blogs'
MIX is happening and there is a lot of excitement around the various releases such as the Windows Phone 7 Developer Preview, IE9 Platform Preview and few other announcements that have been made. Clearly, the Windows Phone 7 Developer Preview has generated the maximum interest and opened a plethora… >>> More

Related posts about security

sudo apt-get update errors

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
Here is what I get on my terminal when running sudo apt-get update errors. I dont know if the issue is from my sources.list or my proxy setup(have not made any changes to proxies). Thank you for any help in advanced. Ign http://security.ubuntu.com oneiric-security Release.gpg Ign http://security… >>> More
The Security-Developer Gap: Why IT Security Can't Fix Your Security Problems Alone

as seen on Devx - Search for 'Devx'
Two well-known white hats explain how hackers take advantage of security holes left by enterprise application developers. >>> More
The Security-Developer Gap: Why IT Security Can't Fix Your Security Problems Alone

as seen on Internet.com - Search for 'Internet.com'
Two well-known white hats explain how hackers take advantage of security holes left by enterprise application developers. >>> More
StackOverFlowError while creating Mac object on AS400/Java

as seen on Stack Overflow - Search for 'Stack Overflow'
Hello all, I am a newbie to AS400-Java programming. I am trying to create my first program to test the implementation of Message Authentication Code (MAC). I am trying to use the HMACSHA1 hash function. My (Java 1.4) program runs fine on a dev box (V5R4).But fails terribly on the QA box (V5R3). My… >>> More
Google App Engine - Spring Security Issue (java.security.AccessControlException)

as seen on Stack Overflow - Search for 'Stack Overflow'
I'm currently getting the AccessControlException below when I deploy to app engine (I don't see it when I run in my local environment). I'm using GAE 1.3.1, Spring 3.0.1, and Spring Security 3.0.2. Any ideas how to get around this issue? It appears to be an issue with Spring Security trying to get… >>> More