N
Noremac
I have a web site. It's business layer is accessed through another web
service. Both are hosted on IIS.
When this application is deployed on the intranet, we have people access it
through their AD accounts. Ideally, we want to pass the Windows Identity that
is accessing the website through to the business web service layer. The web
service layer then grabs the roles from AzMan and returns a custom identity
class (that implements IIdentity).
The problem I am having is that both the web site and web service have to
have <identity impersonate="true" /> in order for the web service to get the
client's identity. We don't want the web site to use the client identity. We
want the web site to run under ASPNET / Network Service (i.e. the identity
assigned for the App Pool).
service. Both are hosted on IIS.
When this application is deployed on the intranet, we have people access it
through their AD accounts. Ideally, we want to pass the Windows Identity that
is accessing the website through to the business web service layer. The web
service layer then grabs the roles from AzMan and returns a custom identity
class (that implements IIdentity).
The problem I am having is that both the web site and web service have to
have <identity impersonate="true" /> in order for the web service to get the
client's identity. We don't want the web site to use the client identity. We
want the web site to run under ASPNET / Network Service (i.e. the identity
assigned for the App Pool).