在部分信任区域中运行XBAP应用程序时，如何保护WCF服务? WCF服务托管在Windows服务中. [英] How do I secure WCF Services when i run the XBAP application in partial Trust Zone? WCF Services are Hosted in Windows Service.

问题描述

H

我们拥有Windows服务中托管的WCF服务.我们正在使用面向.Net Framework 3.5的XBAP应用程序.您要保护WCF服务.从XBAP应用程序访问安全的WCF服务时出现问题.我们有 尝试了两种方法来解决此问题.
 
使用第一种方法(安全模式="TransportCredentialOnly")，我们能够通过使XBAP成为完全信任的应用程序来访问该服务.但是我们不希望XBAP成为完全受信任的应用程序.

we are having a WCF service which is hosted in Windows Service. we are using XBAP application targeting .Net framework 3.5. You want to secure the WCF service. There are problems while accessing the secured WCF service from the XBAP application. we have tried two approaches to overcome this problem.
 
With the first method (Security Mode=”TransportCredentialOnly”) we were able to access the service by making the XBAP a full trust application. But we do not want to have the XBAP as fully trusted application.

在另一种方法中(安全模式=传输".)

In the other method (Security Mode=”Transport”.)

我们在两种方式上都有问题.

we have issues in both ways.

请为我提供解决此问题的解决方案.

please provide me the solution to overcome this issue.

 

 

推荐答案

是否控制环境?用于Intranet的Windows域或用于Internet的公共域

Is it controlled environment or not? Windows domain for intranet or public for internet

绑定是什么?如果XBAP公开，则最有可能是http/s

Whats the binding? If the XBAP goes public, then most likely to be http/s

无论如何，从过去的经验来看，如果您希望从XBAP到服务器的安全通信不受绑定或域的影响，则证书可以使其正常工作.问题是您必须将证书部署到所有客户端计算机.

Anyway, from past experience, if you want secure communications from XBAP to server regardless of binding or domain, certificates can make it work. The problem is that you have to deploy the certificate to all client machines.

这篇关于在部分信任区域中运行XBAP应用程序时，如何保护WCF服务? WCF服务托管在Windows服务中.的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！