stackoom
  简体   繁体   中英

How to limit access to a WCF service, by referer?

 原文  2013-04-16 19:29:21       jquery/ ajax/ wcf/ webget

Question

I have a service that I access from jQuery on a page, it looks like this: 

[ServiceContract(Namespace = "")]
[AspNetCompatibilityRequirements(RequirementsMode = AspNetCompatibilityRequirementsMode.Allowed)]
public class FacadeService
{
    ServiceHelper serviceHelper = new ServiceHelper();

    [OperationContract]
    [WebGet(ResponseFormat=WebMessageFormat.Json)]
    public String GetAllProducts()
    {
        Uri uri = new Uri("http://localhost:12345/api/Products");

        return serviceHelper.SubmitGetRequestToService(uri);
    }
}

That's great, but anyone can now open a browser and hit this service. I want only the local website to be able to access this service. Is there any built-in way to do this or must I devise some clever scheme to keep out the riff-raff?

1 answers

solution1
 0  2013-04-17 02:27:58

If you are hosted your servin on IIS, probably the simplest way will be to limit service url access via IIS tools.

If you have do it with wcf service itself, you can add your behavior for ip filtering, see this and this posts for example.

But I still think it'll be easier to accomplish it via standard IIS tools.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to access SSL enabled WCF service from jQuery? How to call WCF Service? How do I access an ASP.NET variable to pass as JSON string to WCF Ajax Enabled Service unable access asp.net session in wcf service Async call to WCF rest service with session variables access How to call a WCF service from javascript? How to download a file from a WCF service stream? How to consume a WCF Service using jquery? How to optimize WCF service for ajax calls? How to consume JSON from WCF service
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM