自托管WCF服务不会通过HTTPS回复,但HTTP可以正常工作

时间:2013-10-24 09:22:54

标签: c# wcf https

我有一个自托管的WCF服务,当通过HTTP使用wsHttpBinding或basicHttpBinding调用时,它可以正常工作。客户端将包括通过Internet的Windows Phone设备,因为他们无法使用wsHttpBinding,我们肯定需要比basicHttpBinding提供更多的安全性,我试图使用TransportWithMessageCredential。当使用HTTP时,一切都很好但如果我将客户端切换到HTTPS,我会在VS中获取这些:“没有端点监听https:// ...”“远程服务器返回错误:NotFound。“

我启用了服务跟踪,它说没有任何问题就打开了HTTPS端口,当我检查 netstat -an 时,它确认端口确实已打开。 HTTP和wsHttpBinding对服务的调用很有效,它们会向日志生成事件,但这些HTTPS调用根本不会显示在那里。我也无法通过HTTPS获取元数据,尽管它已启用。

客户端和服务器位于同一台计算机上,证书是自签名的,但它适用于wsHttpBinding。

这是服务配置:

<?xml version="1.0" encoding="utf-8" ?>
<configuration>
  <system.serviceModel>
    <services>
      <service behaviorConfiguration="xyzSecuredBehavior" name="x.x.xService">
        <endpoint address="/basic" binding="basicHttpBinding" bindingConfiguration="xyzBasicBinding"
                      contract="x.x.IxService" />
        <endpoint address="/secure" binding="basicHttpBinding" bindingConfiguration="xyzBasicBindingSecure"
                      contract="x.x.IxService" />
        <host>
          <baseAddresses>
            <add baseAddress="https://10.10.0.188:3003/xService" />
            <add baseAddress="http://10.10.0.188:3001/xService" />
          </baseAddresses>
        </host>
      </service>
    </services>

    <bindings>
      <wsHttpBinding>
        <binding name="customAuthenticationBinding" maxReceivedMessageSize="1000000" closeTimeout="23:59:59" openTimeout="23:59:59" receiveTimeout="23:59:59" sendTimeout="23:59:59">
          <readerQuotas maxDepth="1000000" maxStringContentLength="1000000" maxArrayLength="1000000" maxBytesPerRead="1000000" maxNameTableCharCount="1000000" />
          <security mode="Message">
            <message clientCredentialType="UserName" />
          </security>
        </binding>
      </wsHttpBinding>
      <basicHttpBinding>
        <binding name="xyzBasicBinding" maxBufferSize="1000000" maxBufferPoolSize="1000000" maxReceivedMessageSize="1000000">
          <readerQuotas maxDepth="1000000" maxStringContentLength="1000000" maxArrayLength="1000000" maxBytesPerRead="1000000" maxNameTableCharCount="1000000" />
          <security mode="None">
            <message clientCredentialType="UserName" />
          </security>
        </binding>
        <binding name="xyzBasicBindingSecure" maxBufferSize="1000000" maxBufferPoolSize="1000000" maxReceivedMessageSize="1000000">
          <readerQuotas maxDepth="1000000" maxStringContentLength="1000000" maxArrayLength="1000000" maxBytesPerRead="1000000" maxNameTableCharCount="1000000" />
          <security mode="TransportWithMessageCredential">
            <message clientCredentialType="UserName" />
          </security>
        </binding>
      </basicHttpBinding>
    </bindings>

    <behaviors>
      <serviceBehaviors>

        <behavior name="xyzSecuredBehavior">
          <serviceCredentials>
            <serviceCertificate findValue="xyzTestCert" x509FindType="FindBySubjectName" storeLocation="LocalMachine" storeName="My"/>
            <userNameAuthentication userNamePasswordValidationMode="Custom" customUserNamePasswordValidatorType="z.z.AuthenticationManager, z.zz" />
            <windowsAuthentication allowAnonymousLogons="false"/>
          </serviceCredentials>
          <serviceAuthorization serviceAuthorizationManagerType="z.z.AuthorizationManager, z.zz" />
          <serviceMetadata httpsGetEnabled="true" httpGetEnabled="true"/>
          <serviceDebug includeExceptionDetailInFaults="true" />
          <dataContractSerializer maxItemsInObjectGraph="1000000000" />
        </behavior>

        <behavior name="xyzBasicBehavior" >
          <serviceAuthorization serviceAuthorizationManagerType="z.z.AuthorizationManager, z.zz" />
          <serviceMetadata httpGetEnabled="true"/>
          <serviceDebug includeExceptionDetailInFaults="true" />
          <dataContractSerializer maxItemsInObjectGraph="1000000000" />
        </behavior>
      </serviceBehaviors>
    </behaviors>
    <serviceHostingEnvironment multipleSiteBindingsEnabled="true" />
    </system.serviceModel>
</configuration>

这是客户端配置:

<configuration>
<system.serviceModel>
    <bindings>
        <basicHttpBinding>
            <binding name="BasicHttpBinding_IxService" maxBufferSize="2147483647"
                maxReceivedMessageSize="2147483647">
                <security mode="None" />
            </binding>
            <binding name="BasicHttpBinding_IxService1" maxBufferSize="2147483647"
                maxReceivedMessageSize="2147483647">
                <security mode="TransportWithMessageCredential" />
            </binding>
        </basicHttpBinding>
    </bindings>
    <client>
        <endpoint address="http://10.10.0.188:3001/xService/basic"
            binding="basicHttpBinding" bindingConfiguration="BasicHttpBinding_IxService"
            contract="ServiceReference1.IxService" name="BasicHttpBinding_IxService" />
        <endpoint address="https://10.10.0.188:3003/xService/secure"
            binding="basicHttpBinding" bindingConfiguration="BasicHttpBinding_IxService1"
            contract="ServiceReference1.IxService" name="BasicHttpBinding_IxService1_secure" />
    </client>
</system.serviceModel>

任何帮助都表示赞赏,因为我已经浪费了一两天的时间,谷歌搜索和摆弄设置已经导致什么都没有。

2 个答案:

答案 0 :(得分:0)

这已经回答了,我在这里没有回答,而是给你链接

http://www.codeproject.com/Articles/36705/7-simple-steps-to-enable-HTTPS-on-WCF-WsHttp-bindi

答案 1 :(得分:0)

我找到了解决这个问题的方法。由于该服务是自托管的,因此我需要手动将证书应用于应用程序。仅在服务器配置中指定它是不够的。

详细说明可在此处找到: http://allen-conway-dotnet.blogspot.fi/2012/02/applying-and-using-ssl-certificate-with.html