locked
WCF Routing Example - Secure Sessions RRS feed

  • Question

  • Hi, I am using the latest wcf routing example via a routing table from the Microsoft cardspace samples.
    I am looking to modify so that the HttpTextSoap12RouterBinding can use Secure Sessions and Message level security.  Being the example using a binding extension and not custom binding, I am unable to add in the additional parameters.  Any help would be great.


    <bindings>

    <routerBinding>


    <binding name="HttpTextSoap12RouterBinding"


     transport="Http" messageEncoding="Text" messageVersion="Soap12WSAddressing10">

    <!--


     security authenticationMode="SecureConversation" />

    <secureConversationBootstrap authenticationMode="SspiNegotiated" />

    <textMessageEncoding messageVersion="Soap12WSAddressing10" writeEncoding="utf-8"/>

    <httpTransport/

     -->

     

    </binding>

    <binding name="TcpBinarySoap12RouterBinding"


     transport="Tcp"

     messageEncoding="Binary"

     messageVersion="Soap12WSAddressing10">

    </binding>


    </routerBinding>

     

    Thursday, October 1, 2009 2:41 AM

Answers

  • This is not necessarily possible - it depends if whoever wrote that binding allowed it. You should look in the code if it has anything about security.
    http://webservices20.blogspot.com/
    WCF Security, Performance And Testing Blog
    Thursday, October 1, 2009 9:58 AM
  • Hi Peter,

    As for the router sample in wcf/wf samples package, it provides a basic forwarding router which simply use extension to forward the underlying wcf message. For your scenario, will you require different secuirty(or message layer setting) for the client2router and router2service ?  So far that sample will only work when the two part use the same(compatible message security or other message layer configuration such as session and reliable message).

    For more advanced router scenario in which you will change more on the security or the message communication, you may condier building a processing router(which act like a middle service that accept message from client and then forward message to backend service via new service operation call ):

    #Building a WCF Router, Part 1
    http://msdn.microsoft.com/en-us/magazine/cc500646.aspx



    Please remember to mark the replies as answers if they help and unmark them if they provide no help.
    Wednesday, October 7, 2009 5:50 AM

All replies

  • This is not necessarily possible - it depends if whoever wrote that binding allowed it. You should look in the code if it has anything about security.
    http://webservices20.blogspot.com/
    WCF Security, Performance And Testing Blog
    Thursday, October 1, 2009 9:58 AM
  • Hi Peter,

    As for the router sample in wcf/wf samples package, it provides a basic forwarding router which simply use extension to forward the underlying wcf message. For your scenario, will you require different secuirty(or message layer setting) for the client2router and router2service ?  So far that sample will only work when the two part use the same(compatible message security or other message layer configuration such as session and reliable message).

    For more advanced router scenario in which you will change more on the security or the message communication, you may condier building a processing router(which act like a middle service that accept message from client and then forward message to backend service via new service operation call ):

    #Building a WCF Router, Part 1
    http://msdn.microsoft.com/en-us/magazine/cc500646.aspx



    Please remember to mark the replies as answers if they help and unmark them if they provide no help.
    Wednesday, October 7, 2009 5:50 AM