Securing a client application can mean many things, from simply blocking unauthorized users from launching your application, to securing the calls to the services from the client to having a full client side security context with role or claims based authorization and access to features and data on the client side. In this session, you will learn about the options available to you in Silverlight and how to make the most of them. You'll learn how to leverage host security if your Silverlight client will be part of a bigger site that already secures access, as well as how to do stand alone authentication and authorization on the client side. You will learn how to leverage WCF RIA Services to propagate a security context to the client for client authentication and authorization, even if you choose to use no other parts of RIA Services. And you will learn how to secure the calls to the services that your client uses sharing the authenticated session with the host where appropriate.
You will learn:
- What security mechanisms exist natively in Silverlight and how to leverage them.
- How to authenticate and authorize actions on the client side in a Silverlight app with RIA Services.
- How to share the authenticated session between the client application and the service calls the application makes.