Reputation: 744
Is there a way to grab the password using windows authentication with webhttpbinding in WCF?
I'm currently have a selfhosted WCF REST service. Using WebHttpBinding and Windows authentication, is it possible at all to get the password or do I have to use Basic authentication?
Upvotes: 0
Views: 197
Answers (1)
Reputation: 87298
You can't get the user password using Windows auth - since the authentication is done via a third party (usually the active directory), no passwords are exchanged between the client and the service, only a token which is issued by the AD.
Being able to get the password using Windows auth would also be a huge security risk - in intranets clients (such as browsers) usually don't prompt the user for credentials when authenticating themselves to a server which requires that kind of authentication. You wouldn't want your password to be handed over to a service which you happen to visit that uses that kind of authentication.
Upvotes: 1
Related Questions
- WCF Authentication
- How can I do Windows Authentication with WCF over http?
- How to authenticate hosted wcf service with username and password?
- Consuming WCF Service with BasicHttpBinding and Windows Authentication
- Can you use Integrated Windows Authentication out-of-browser?
- WCF .net 4.0 HTTP Basic Authentication
- Can WCF do WindowsAuthentication with username password?
- WCF Service, Windows Authentication
- WCF basicHttpBinding authenticating using username & password like in ASMX web services
- How to authenticate in WCF services in BasicHttpBinding?