简体繁体 English

通过HTTP具有basicHttpBinding，加密，签名和usernameToken的WCF

[英]WCF with basicHttpBinding, encryption, signing and usernameToken over HTTP

原文 2010-11-27 21:47:57 5 1 c#/ wcf-client/ basichttpbinding/ usernametoken

I'm trying to configure WCF client to generate proper request. 我正在尝试配置WCF客户端以生成正确的请求。 In that request I need security header with usernameToken. 在该请求中，我需要带有usernameToken的安全标头。 Also, I need to encrypt and sign request. 另外，我需要对请求进行加密和签名。 All this is communicated via plain HTTP. 所有这些都通过纯HTTP进行通信。

So far, I have managed to make client sign and encrypt message. 到目前为止，我已经设法使客户端签名和加密邮件。 Now I need to somehow incorporate usernameToken into this security header. 现在，我需要以某种方式将usernameToken合并到此安全标头中。

How can I do this? 我怎样才能做到这一点？

I'm using basicHttpBinding, with security mode set to "Message" and clientCredentialType = "Certificate" for message. 我正在使用basicHttpBinding，并将安全模式设置为“消息”，并将clientCredentialType =“ Certificate”用作消息。

I stumbled upon clearUsernameToken binding library but I see no way of incorporating all of this (usernameToken, sign and encrypt) into one client, and all that over HTTP. 我偶然发现了clearUsernameToken绑定库，但是我看不到将所有这些（usernameToken，签名和加密）都集成到一个客户端中以及所有通过HTTP集成的方法。

Is this even possible? 这有可能吗？

1 个解决方案

I have managed to do this with WSE 3.0. 我设法通过WSE 3.0做到了这一点。

Now in my SOAP request I have UsernameToken, BinarySecurityToken, digital signature and encryption. 现在，在我的SOAP请求中，我具有UsernameToken，BinarySecurityToken，数字签名和加密。 Of course, I had to do some custom WSE filters, but it wasn't that hard. 当然，我必须做一些自定义的WSE筛选器，但这并不难。

For me it's strange that this was easier to achieve in older framework like WSE, then by using WCF. 对我来说，很奇怪，在WSE之类的较旧框架中，通过使用WCF可以更轻松地实现这一点。