我正在尝试添加自定义安全功能,其中客户端为Silverlight客户端发出的每个服务调用添加一个令牌,然后该服务可以访问此令牌来控制应用程序安全系统.我试图通过实现IClientMessageInspector接口并将其链接到我生成的服务客户端来实现此目的.我没有使用Visual Studio生成的代理,而是使用ChannelFactory创建的自己的客户端.我已经设法在网上找到了几个似乎都使用两种基本方法之一的解决方案.首先,通过向呈现给IClientMessageInspector.BeforeSendRequest的Message的headers集合添加标头,其次通过使用HttpRequestMessageProperty将信息作为属性添加到呈现给IClientMessageInspector.BeforeSendRequest的Message.我一直在尝试这两种方法而没有任何成功.看来两种技术都成功地将数据添加到请求中,但我无法在服务器上访问.我想补充一点,对我来说这是一个非常新的领域,由于缺乏经验,我很可能在互联网上错过了答案.
生成我的客户端的代码是:
private ISecurityAdministrationContract CreateChannel()
{
if (factory == null)
{
lock (this)
{
// Create a custom binding that uses HTTP and binary encoding.
var elements = new List<BindingElement>();
elements.Add(new BinaryMessageEncodingBindingElement());
elements.Add(new HttpTransportBindingElement());
var binding = new CustomBinding(elements);
// Create a channel factory for the service endpoint configured with the custom binding.
factory = new ChannelFactory<ISecurityAdministrationContract>(binding, new EndpointAddress(SecurityAdminServiceAddress));
//Add my IClientMessageInspector
factory.Endpoint.Behaviors.Add(new ClientSecurityInterceptor());
}
}
ISecurityAdministrationContract client = factory.CreateChannel();
return client;
}
}
ISecurityAdministrationContract client = factory.CreateChannel();
return client;
}
将标头添加到请求的代码是:
public object BeforeSendRequest(ref System.ServiceModel.Channels.Message request, System.ServiceModel.IClientChannel channel)
{
//Method 1
MessageHeader header = MessageHeader.CreateHeader("MyFirstAuthentication", "ns", "AAAAAAAA-BBBB-CCCC-DDDD-EEEEEEEEEEEEE");
request.Headers.Add(header);
//Method 2
HttpRequestMessageProperty httpRequestMessage;
httpRequestMessage = new HttpRequestMessageProperty();
httpRequestMessage.Headers["MySecondAuthentication"] = "11111111-2222-3333-4444-5555555555555";
request.Properties.Add(HttpRequestMessageProperty.Name, httpRequestMessage);
return null;
}
上面的代码实现了这两种技术.
由fiddler捕获的服务调用是:( NB http替换为ht_tp cos该站点将不允许我发布hyoerlinks)
POST ht_tp://127.0.0.1:6785/SecurityAdministrationRelayService.svc/HTTP/1.1接受:/ Referer:ht_tp://ipv4.fiddler:6785/ClientBin/Civica.Housing.xap Accept-Language:en-gb Content-Length :400内容类型:application/soap + msbin1 MySecondAuthentication:11111111-2222-3333-4444-5555555555555 Accept-Encoding:gzip,deflate User-Agent:Mozilla/4.0(兼容; MSIE 8.0; Windows NT 5.1; Trident/4.0; GTB5; InfoPath.2; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727 )主机:127.0.0.1:6785连接:Keep-Alive Pragma:no-cache
V_ 小号 _a_V_D Ahttp://tempuri.org/ISecurityAdministrationContract/CreateAdvocateD ߔ_9红箭-9反坦克导弹-d,d*@ MyFirstAuthentication _ns%AAAAAAAA - BBBB - CCCC-DDDD-EEEEEEEEEEEEED _ @的http://ipv4.fiddler:6785/SecurityAdministrationRelayService.svc/V @_CreateAdvocate_ http://tempuri.org/@ advocateVO { "ID":0, "用户ID":4 "AdvocateForId":如图8所示, "ValidFrom": "/日期(1291127869690 + 0000)/", "ValidTo":空} __
这似乎包含两种技术的令牌信息.
当我尝试提取此信息时,问题出现在服务器上.我已经实现了IOperationInvoker并试图在IncomingMessageHeaders中找到标题而没有任何成功.我也在IncomingMessageProperties中搜索过,但是我看不到任何添加的标题细节.这是我在IOperationInvoker中使用的代码:
public object Invoke(object instance, object[] inputs, out object[] outputs)
{
PreInvoke(instance, inputs);
object returnedValue = null;
object[] outputparams = new object[] { };
Exception exception = null;
try
{
returnedValue = originalInvoker.Invoke(instance, inputs, out outputparams);
outputs = outputparams;
return returnedValue;
}
catch (Exception e)
{
exception = e; throw;
}
finally
{
PostInvoke(instance, returnedValue, outputparams, exception);
}
}
protected virtual void PreInvoke(object instance, object[] inputs)
{
//Look for header directly
int index = System.ServiceModel.OperationContext.Current.IncomingMessageHeaders.FindHeader("MyFirstAuthentication", "ns");
//Search via enumerator
foreach (var header in System.ServiceModel.OperationContext.Current.IncomingMessageHeaders)
{
}
}
FindHeader返回-1,而枚举器找到5个头,即; 'Action','MessageID','ReplyTo','VsDebuggerCausalityData'和'To'.
OperationContext.Current.IncomingMessageProperties集合包含4个条目,即:'Via','Security','Encoder'和'System.ServiceModel.Channels.RemoteEndpointMessageProperty'
实际上,如果我在客户端中注释掉IClientMessageInspector到ClienChannel的行,则fiddler通过省略添加的细节来报告更改的http,但是Incoming消息中的头和属性集合保持不变.
关于如何访问此信息,或者为什么它不作为IncomingMessage的一部分呈现的任何想法都将非常感激地收到.
我已经回答了我自己的问题.上述任何代码都没有错,它只需要链接到正确的位置.在我的完整解决方案中,我从Silverlight客户端调用服务,然后调用第二个服务.令人尴尬的是,我已将我的IOperationInvoker链接到第二个服务(doh).当我将它链接到中间服务时,标头按预期可用.
读取值的代码是:
int index = OperationContext.Current.IncomingMessageHeaders.FindHeader("MyFirstAuthentication", "ns");
if (index >= 0)
{
string value = OperationContext.Current.IncomingMessageHeaders.GetHeader<string>(index);
}
| 归档时间: |
|
| 查看次数: |
10293 次 |
| 最近记录: |