You need to use Federation binding and implement an STS that will
issue the token. You can then use an authorization policy and/or
authorization manager with your specific service, and with the service
you can define MTOM for encoding.
On Apr 20, 2:28*am, Sarasam <Sara...@xxxxxx> wrote:
> i have a WCF service(hosted in IIS) with the following configuration:
> Streaming(for file upload and download)
> now i want to implement a security system where i receive username/password
> only once. after which i want to issue a custom generated token which should
> be used for all subsequent calls to service. i also want to control the
> expiration and renewal of the issued token. what should be my approach in
> order to acheive this?
> please advice, if possible with some code sample.