我试图从ASP.NET核心库项目中使用SOAP Web服务。
我已经安装了为我创建代理类的Mictosoft WCF Web服务引用提供程序,但是我的身份验证有问题。
我的代码目前看起来像这样:
var binding = new BasicHttpBinding(BasicHttpSecurityMode.TransportWithMessageCredential);
var address = new EndpointAddress(@"https://myserviceaddress.asmx");
var client = new TestApiClient(binding, address);
client.ClientCredentials.UserName.UserName = "testusername";
client.ClientCredentials.UserName.Password = "testpassword";
var result = await client.GetDataAsync(params);
我尝试了一些不同的方法,但我要么是未经授权,要么是变体:The value 'TransportWithMessageCredential' is not supported in this context for the binding security property 'securityMode'.。
我想我也应该在binding.Security.Message上设置一些属性,但binding.Security上唯一存在的属性是Transport和Mode。
有人知道如何正确设置吗?
还有其他更好的方法可以从ASP.NET Core中使用SOAP服务吗?我想要一种不必创建代理类的动态方式,但如果必须,我可以使用代理,但我需要能够使用用户和密码进行身份验证,我必须使用HTTPS。
答案 0 :(得分:2)
.NET Core 2.0上的WCF尚不支持消息安全性(TransportWithMessageCredential上的BasicHttpBinding)。
参考:
答案 1 :(得分:2)
在同一个问题上苦苦挣扎了很多天后,由于.Net核心在此问题解答之前的支持非常有限,因此我设法通过自己构建整个信封并使用SimpleSoapClient来解决该问题。
我将尝试通过一个简单的示例逐步完成所有必需的步骤。因为每个步骤都有其自己的问题需要解决。
让我们假设您的模型是猫。
public class Cat
{
public int Lives { get; set; }
}
您的整个信封模型将如下所示:
public class Envelope
{
public EnvelopeHeader Header { get; set; }
public EnvelopeBody Body { get; set; }
}
public class EnvelopeHeader
{
[XmlElementAttribute(Namespace = "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd")]
public Security Security { get; set; }
}
[XmlTypeAttribute(AnonymousType = true, Namespace = "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd")]
[XmlRootAttribute(Namespace = "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd", IsNullable = false)]
public class Security
{
public SecurityUsernameToken UsernameToken { get; set; }
}
[XmlTypeAttribute(AnonymousType = true, Namespace = "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd")]
public class SecurityUsernameToken
{
public string Username { get; set; }
public SecurityUsernameTokenPassword Password { get; set; }
[XmlAttributeAttribute(Form = System.Xml.Schema.XmlSchemaForm.Qualified, Namespace = "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd")]
public string Id { get; set; }
}
[XmlTypeAttribute(AnonymousType = true, Namespace = "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd")]
public class SecurityUsernameTokenPassword
{
[XmlAttributeAttribute()]
public string Type { get; set; }
[XmlTextAttribute()]
public string Value { get; set; }
}
public class EnvelopeBody
{
public Cat Cat{ get; set; }
}
P.S:不要忘记在您身体中需要的地方包含XML名称空间。
下一步是将您的Envelop模型序列化为XML字符串。
string xml;
XmlWriterSettings settings = new XmlWriterSettings();
settings.OmitXmlDeclaration = true;
using (MemoryStream ms = new MemoryStream())
{
using (XmlWriter writer = XmlWriter.Create(ms, settings))
{
XmlSerializerNamespaces names = new XmlSerializerNamespaces();
names.Add("", "");//add your needed namespaces here
XmlSerializer cs = new XmlSerializer(typeof(Envelope));
var myEnv = new Envelope()
{
Header = new EnvelopeHeader()
{
Security = new Security()
{
UsernameToken = new SecurityUsernameToken()
{
Username = "",
Password = new SecurityUsernameTokenPassword()
{
Type = "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText",//update type to match your case
Value = ""
}
}
}
},
Body = new EnvelopeBody()
{
Cat = new Cat() { Lives = 7 }
}
};
cs.Serialize(writer, myEnv, names);
ms.Flush();
ms.Seek(0, SeekOrigin.Begin);
StreamReader sr = new StreamReader(ms);
xml = sr.ReadToEnd();
}
}
最后使用以下命令发送XML信封:
SoapEnvelope responseEnvelope = null;
using (var client = SoapClient.Prepare().WithHandler(new DelegatingSoapHandler()
{
OnHttpRequestAsyncAction = async (z, x, y) =>
{
x.Request.Content = new StringContent(xml , Encoding.UTF8, "text/xml");
}
}))
{
responseEnvelope = client.SendAsync("url", "action",SoapEnvelope.Prepare()).Result;
}
请注意,您需要根据情况更新许多选项。 我的案例是带有WCF的WSSE安全标头中的密码类型为“ PasswordText”。
答案 2 :(得分:0)
您是否尝试在IIS上启用SSL?启用SSL将使您的服务在HTTP和& HTTPS。您的客户需要购买SSL证书。为此