Enable SSL for my WCF service

后端 未结 3 1478
北荒
北荒 2020-11-28 22:01

I have a WCF service that uses basicHttpbinding in development.

Now in product we want to use SSL, what changes do I have to make to force SSL connections only?

相关标签:
3条回答
  • 2020-11-28 22:27

    This page on MSDN explains WCF Binding Security.

    http://msdn.microsoft.com/en-us/library/ms729700.aspx

    The BasicHttpBinding class is primarily used to interoperate with existing Web services, and many of those services are hosted by Internet Information Services (IIS). Consequently, the transport security for this binding is designed for seamless interoperation with IIS sites. This is done by setting the security mode to Transport and then setting the client credential type. The credential type values correspond to IIS directory security mechanisms. The following code shows the mode being set and the credential type set to Windows. You can use this configuration when both client and server are on the same Windows domain.

    C#

    BasicHttpBinding b = new BasicHttpBinding();
    b.Security.Mode = BasicHttpSecurityMode.Transport ;
    b.Security.Transport.ClientCredentialType = HttpClientCredentialType.Windows;
    

    Or, in configuration:

    <bindings>   
       <basicHttpBinding>
                <binding name="SecurityByTransport">
                   <security mode="Transport">
                     <transport clientCredentialType="Windows" />
                    </security>
                </binding>   
       </basicHttpBinding> 
    </bindings>
    

    To enable ssl, without a login, set clientCredentialType to "None".

    Options for security mode are:

    None, Transport, Message, TransportWithMessageCredential and TransportCredentialOnly

    You can find more details at: http://msdn.microsoft.com/en-us/library/system.servicemodel.basichttpsecuritymode.aspx

    0 讨论(0)
  • 2020-11-28 22:28

    I just faced the same problem and found this MSDN article: How to: Configure an IIS-hosted WCF service with SSL At the end of the article you will find the xml configuration of the WebConfig file.

    The solution worked just fine for me. One more thing to say, keep in mind that you need a REAL certificate for your release!

    0 讨论(0)
  • 2020-11-28 22:33

    I think that if under your "bindings" where you have <Security mode="Transport">, if you'd change it to be <security mode="None">, you would be ok.

    this is a copy of a codebase that I'm working on that I did that in-code, and it appears to be working. I get the WSDL at least when i hit the service, if that helps at all :)

    BasicHttpBinding basicBinding = new BasicHttpBinding();
    if (RegistryConnectionStringFactory.UseSslForCommunications)
    {
         basicBinding.Security.Mode = BasicHttpSecurityMode.TransportWithMessageCredential;
         basicBinding.Security.Message.ClientCredentialType = BasicHttpMessageCredentialType.UserName;
    }
    else
    {
         basicBinding.Security.Mode = BasicHttpSecurityMode.None;
         basicBinding.Security.Message.ClientCredentialType = BasicHttpMessageCredentialType.UserName;
    }
    
    0 讨论(0)
提交回复
热议问题