Role Manager has not been enabled -- dotnet web services enhancements

Alec MacLean
6/30/2007 3:05:01 PM

Hi,

I think I'm on the last step now...

I'm using usernameToken authentication, with usernameOverTransportSecurity
(transport layer SSL).

I have implemented a custom UserTokenManager that authenticates against our
existing database of user accounts in SQL server. Note that this is NOT the
MS-provided accounts db, as my extranet users predate this feature being
provided and I'm not about to change it right now.

I really need to use the existing db of users, but WSE is responding with a
SecurityFault exception of "The Role Manager feature has not been enabled."

Can anyone enlighten me as to how I get WSE3 to accept that I'm using
application-controlled roles as opposed to the central MS-provided users and
roles db?

Everything I've read so far all assumes that I must be using the
MS-installed accounts db. I'm not, and don't want to at this stage.

thanks.

Al

Alec MacLean
7/1/2007 12:00:00 AM

I think I may have found the answer to my own question:

Looks like I need to override the security GenericPrincipal and
PrincipalPermission objects/classes to use the list of roles I am
maintaining in my DB already.

MSDN Ref documents for anyone else interested:
http://msdn2.microsoft.com/en-us/library/y9dd5fx0.aspx
http://msdn2.microsoft.com/en-us/library/system.security.permissions.principalpermission.aspx
http://msdn2.microsoft.com/en-us/library/system.security.principal.genericidentity.aspx

Al

[quoted text, click to view]

dotnet web services enhancements : Role Manager has not been enabled