使用transport clientCredentialType Basic的WCF服务

时间:2011-10-05 18:37:47

标签: wcf authentication

我正在尝试创建一个执行基本身份验证的wcf服务,但我遇到了一些麻烦。

这是我的服务web.config的样子:

  <?xml version="1.0" encoding="utf-8" ?>
<configuration>
    <system.serviceModel>
        <client />
        <services>
            <service name="Service.DataExchangeService" behaviorConfiguration="MyBehavior">
                <endpoint address="" binding="wsHttpBinding" bindingConfiguration="wsDataImportEndpoint" contract="Service.IDataExchangeService">
                    <identity>
                        <dns value="localhost" />
                    </identity>
                </endpoint>
                <endpoint address="mex" binding="mexHttpsBinding" contract="IMetadataExchange" />
                <host>
                    <baseAddresses>
                        <add baseAddress="http://localhost:8732/Design_Time_Addresses/DataExchange.Server.Service/Service1/" />
                    </baseAddresses>
                </host>
            </service>
        </services>
        <bindings>
            <wsHttpBinding>
                <binding name="wsDataImportEndpoint" maxBufferPoolSize="2147483647"
                    maxReceivedMessageSize="2147483647">
                    <readerQuotas maxDepth="32" maxStringContentLength="2147483647"
                        maxArrayLength="16384" maxBytesPerRead="4096" maxNameTableCharCount="16384" />
                    <security mode="Transport">
                        <transport clientCredentialType="Basic"/>
                        <message clientCredentialType="UserName" negotiateServiceCredential="true" />
                    </security>
                </binding>
            </wsHttpBinding>
        </bindings>
        <behaviors>
            <serviceBehaviors>
                <behavior name="MyBehavior">
                    <serviceMetadata httpsGetEnabled="true" />
                    <serviceDebug includeExceptionDetailInFaults="true" />
                    <serviceCredentials>
                        <userNameAuthentication customUserNamePasswordValidatorType="DataExchange.Server.Service.UserNameValidator, DataExchange.Server.Service"
                                                userNamePasswordValidationMode="Custom" />
                    </serviceCredentials>
                </behavior>
                <behavior name="">
                    <serviceMetadata httpGetEnabled="true" />
                    <serviceDebug includeExceptionDetailInFaults="false" />
                </behavior>
            </serviceBehaviors>
        </behaviors>
    </system.serviceModel>
    <connectionStrings>
        <add name="ApplicationServices" connectionString="data source=sharept07\mssqlserver2008;initial catalog=VOS.Membership;integrated security=True;" providerName="System.Data.SqlClient" />
        <add name="ROSEntities" connectionString="metadata=res://*/ROSModel.csdl|res://*/ROSModel.ssdl|res://*/ROSModel.msl;provider=System.Data.SqlClient;provider connection string=&quot;data source=sharept07\MSSQLServer2008;initial catalog=VOS;integrated security=True;multipleactiveresultsets=True;App=EntityFramework&quot;" providerName="System.Data.EntityClient" />
    </connectionStrings>
</configuration>

这是我的客户端配置文件的样子:

<?xml version="1.0" encoding="utf-8" ?>
<configuration>
    <system.serviceModel>
        <bindings>
            <wsHttpBinding>
                <binding name="WSHttpBinding_IDataExchangeService" closeTimeout="00:01:00"
                    openTimeout="00:01:00" receiveTimeout="00:10:00" sendTimeout="00:01:00"
                    bypassProxyOnLocal="false" transactionFlow="false" hostNameComparisonMode="StrongWildcard"
                    maxBufferPoolSize="524288" maxReceivedMessageSize="2147483647"
                    messageEncoding="Text" textEncoding="utf-8" useDefaultWebProxy="true"
                    allowCookies="false">
                    <readerQuotas maxDepth="32" maxStringContentLength="8192" maxArrayLength="16384"
                        maxBytesPerRead="4096" maxNameTableCharCount="16384" />
                    <reliableSession ordered="true" inactivityTimeout="00:10:00"
                        enabled="false" />
                    <security mode="Transport">
                        <transport clientCredentialType="Basic" proxyCredentialType="None"
                            realm="" />
                        <message clientCredentialType="UserName" negotiateServiceCredential="true" />
                    </security>
                </binding>
            </wsHttpBinding>
        </bindings>
        <client>
            <endpoint address="https://server.com:446/DataExchangeService/DataExchangeService.svc"
                binding="wsHttpBinding" bindingConfiguration="WSHttpBinding_IDataExchangeService"
                contract="DataExchangeSvc.IDataExchangeService" name="WSHttpBinding_IDataExchangeService">
                <identity>
                    <dns value="localhost" />
                </identity>
            </endpoint>
        </client>
    </system.serviceModel>
</configuration>

以下是我在客户端调用服务的方式:

 static void Main(string[] args)
    {
        using (var client = new DataExchangeSvc.DataExchangeServiceClient())
        {
            client.ClientCredentials.UserName.UserName = "test";
            client.ClientCredentials.UserName.Password = "test";
            var data = client.RetrieveData();
        }
    }

当我在服务配置文件中的安全节点内将传输模式设置为“无”时,如果我省略了凭证行,则上述工作正常,但是当我将其更改为基本时,我不断收到此错误:

There was no endpoint listening at https://server.com:446/DataExchangeService/DataExchangeService.svc that could accept the message. This is often caused by an incorrect address or SOAP action. See InnerException, if present, for more details.

我真的不知道发生了什么,所以如果有人能以任何方式指导我,那将非常有帮助。

由于

1 个答案:

答案 0 :(得分:9)

我认为您真正想要的是使用TransportWithMessageCredential而不仅仅是Transport。仅使用<security mode="Transport">将使您的服务通过HTTPS,但与使用凭据进行身份验证无关。如果您使用<security mode="TransportWithMessageCredential">,则可以使用HTTPS并拥有用户名和密码。 Here是关于此的MSDN文章。

修改

如果您确实只想使用Transport,请从服务配置中取出<message>节点。

相关问题
最新问题