共用方式為

作法:使用 HTTPS 建立自訂可靠的工作階段繫結

  • 發行項

本主題示範使用 Secure Sockets Layer (SSL) 傳輸安全性來搭配可靠工作階段。 若要透過 HTTPS 使用可靠工作階段,您必須建立使用可靠工作階段與 HTTPS 傳輸的自訂繫結。 您可以透過命令式程式碼或是宣告式設定檔來啟用可靠工作階段。 此程序會使用用戶端與服務的設定檔來啟用可靠工作階段和 <httpsTransport> 元素。

此程序的重要部分在於<端點>設定元素包含 bindingConfiguration 屬性,而此屬性參考名為 reliableSessionOverHttps 的繫結設定。 <繫結>設定元素會參考此名稱,以指定可靠的工作階段和 HTTPS 傳輸是藉由包含 <reliableSession><HTTPsTransport> 元素來使用。

如需此範例的來源複本,請參閱透過 HTTPS 的自訂繫結可靠工作階段

若要設定包含 CustomBinding 的服務來使用搭配 HTTPS 的可靠工作階段

  1. 定義服務類型的服務合約。

    [ServiceContract]
public interface ICalculator
{
    [OperationContract]
    double Add(double n1, double n2);
    [OperationContract]
    double Subtract(double n1, double n2);
    [OperationContract]
    double Multiply(double n1, double n2);
    [OperationContract]
    double Divide(double n1, double n2);
}

  2. 在服務類別中實作服務合約。 請注意,服務的實作內並未指定位址或繫結資訊。 您不需要撰寫程式碼,即可從設定檔擷取位址或繫結資訊。

    public class CalculatorService : ICalculator
{
    public double Add(double n1, double n2)
    {
        return n1 + n2;
    }
    public double Subtract(double n1, double n2)
    {
        return n1 - n2;
    }
    public double Multiply(double n1, double n2)
    {
        return n1 * n2;
    }
    public double Divide(double n1, double n2)
    {
        return n1 / n2;
    }
}

  3. 建立 Web.config 檔,以便使用名為 reliableSessionOverHttps (使用可靠工作階段和 HTTPS 傳輸) 的自訂繫結來設定 CalculatorService 端點。

    <?xml version="1.0" encoding="utf-8" ?>
<configuration>
  <system.serviceModel>

    <services>
      <service name="Microsoft.ServiceModel.Samples.CalculatorService" 
               behaviorConfiguration="CalculatorServiceBehavior">
        <!-- 
          Use base address provided by the host 
        -->
        <endpoint address=""
                  binding="customBinding"
                  bindingConfiguration="reliableSessionOverHttps" 
                  contract="Microsoft.ServiceModel.Samples.ICalculator" />
        <!-- 
          The mex endpoint is exposed as 
          http://localhost/servicemodelsamples/service.svc/mex
        -->
        <endpoint address="mex"
                  binding="mexHttpBinding"
                  contract="IMetadataExchange" />
      </service>
    </services>

    <bindings>
      <customBinding>
        <binding name="reliableSessionOverHttps">
          <reliableSession />
          <httpsTransport />
        </binding>
      </customBinding>
    </bindings>

  </system.serviceModel>
</configuration>

  4. 建立包含此行的 Service.svc 檔案:

    <%@ServiceHost language=c# Service="CalculatorService" %>

  5. Service.svc 檔放入您的網際網路資訊服務 (IIS) 虛擬目錄中。

若要設定包含 CustomBinding 的用戶端來使用搭配 HTTPS 的可靠工作階段

  1. 從命令列使用 ServiceModel 中繼資料公用程式工具 (Svcutil.exe),可從服務中繼資料產生程式碼。

    Svcutil.exe <Metadata Exchange (MEX) address or HTTP GET address>

  2. 所產生的用戶端會包含 ICalculator 介面,其中定義用戶端實作所必須滿足的服務合約。

    // Generated interface defining the ICalculator contract	
[System.ServiceModel.ServiceContractAttribute(
Namespace="http://Microsoft.ServiceModel.Samples",
ConfigurationName="Microsoft.ServiceModel.Samples.ICalculator")]
public interface ICalculator
{
    [System.ServiceModel.OperationContractAttribute(
    Action="http://Microsoft.ServiceModel.Samples/ICalculator/Add",
    ReplyAction="http://Microsoft.ServiceModel.Samples/ICalculator/AddResponse")]
    double Add(double n1, double n2);

    [System.ServiceModel.OperationContractAttribute(
    Action="http://Microsoft.ServiceModel.Samples/ICalculator/Subtract",
    ReplyAction="http://Microsoft.ServiceModel.Samples/ICalculator/SubtractResponse")]
    double Subtract(double n1, double n2);

    [System.ServiceModel.OperationContractAttribute(
    Action="http://Microsoft.ServiceModel.Samples/ICalculator/Multiply",
    ReplyAction="http://Microsoft.ServiceModel.Samples/ICalculator/MultiplyResponse")]
    double Multiply(double n1, double n2);

    [System.ServiceModel.OperationContractAttribute(
    Action="http://Microsoft.ServiceModel.Samples/ICalculator/Divide",
    ReplyAction="http://Microsoft.ServiceModel.Samples/ICalculator/DivideResponse")]
    double Divide(double n1, double n2);
}

  3. 產生的用戶端應用程式也包含 ClientCalculator 的實作。 請注意,服務的實作內並未指定位址或繫結資訊。 您不需要撰寫程式碼,即可從設定檔擷取位址或繫結資訊。

    // Implementation of the CalculatorClient
public partial class CalculatorClient :
    System.ServiceModel.ClientBase<Microsoft.ServiceModel.Samples.ICalculator>,
    Microsoft.ServiceModel.Samples.ICalculator
{
    public CalculatorClient()
    {
    }

    public CalculatorClient(string endpointConfigurationName) :
        base(endpointConfigurationName)
    {
    }

    public CalculatorClient(string endpointConfigurationName, string remoteAddress) :
        base(endpointConfigurationName, remoteAddress)
    {
    }

    public CalculatorClient(string endpointConfigurationName,
        System.ServiceModel.EndpointAddress remoteAddress) :
        base(endpointConfigurationName, remoteAddress)
    {
    }

    public CalculatorClient(System.ServiceModel.Channels.Binding binding,
        System.ServiceModel.EndpointAddress remoteAddress) :
        base(binding, remoteAddress)
    {
    }

    public double Add(double n1, double n2)
    {
        return base.Channel.Add(n1, n2);
    }

    public double Subtract(double n1, double n2)
    {
        return base.Channel.Subtract(n1, n2);
    }

    public double Multiply(double n1, double n2)
    {
        return base.Channel.Multiply(n1, n2);
    }

    public double Divide(double n1, double n2)
    {
        return base.Channel.Divide(n1, n2);
    }
}

  4. 將名為 reliableSessionOverHttps 的自訂繫結設定成使用 HTTPS 傳輸和可靠的工作階段。

    <?xml version="1.0" encoding="utf-8" ?>
<configuration>
  <system.serviceModel>

    <client>
      <!-- 
        This endpoint has an https address
      -->
      <endpoint name=""
                address="https://localhost/servicemodelsamples/service.svc" 
                binding="customBinding" 
                bindingConfiguration="reliableSessionOverHttps" 
                contract="Microsoft.ServiceModel.Samples.ICalculator" />
    </client>

    <bindings>
      <customBinding>
        <binding name="reliableSessionOverHttps">
          <reliableSession />
          <httpsTransport />
        </binding>
      </customBinding>      
    </bindings>

  </system.serviceModel>
</configuration>

  5. 在應用程式中建立 ClientCalculator 的執行個體,然後呼叫服務作業。

    //Client implementation code.
class Client
{
    static void Main()
    {
        // Create a client with given client endpoint configuration
        CalculatorClient client = new CalculatorClient();

        // Call the Add service operation.
        double value1 = 100.00D;
        double value2 = 15.99D;
        double result = client.Add(value1, value2);
        Console.WriteLine("Add({0},{1}) = {2}", value1, value2, result);

        // Call the Subtract service operation.
        value1 = 145.00D;
        value2 = 76.54D;
        result = client.Subtract(value1, value2);
        Console.WriteLine("Subtract({0},{1}) = {2}", value1, value2, result);

        // Call the Multiply service operation.
        value1 = 9.00D;
        value2 = 81.25D;
        result = client.Multiply(value1, value2);
        Console.WriteLine("Multiply({0},{1}) = {2}", value1, value2, result);

        // Call the Divide service operation.
        value1 = 22.00D;
        value2 = 7.00D;
        result = client.Divide(value1, value2);
        Console.WriteLine("Divide({0},{1}) = {2}", value1, value2, result);

        //Closing the client gracefully closes the connection and cleans up resources
        client.Close();

        Console.WriteLine();
        Console.WriteLine("Press <ENTER> to terminate client.");
        Console.ReadLine();
    }
}

  6. 請編譯並執行用戶端。

.NET Framework 安全性

因為本範例中所使用的憑證是使用 Makecert.exe 所建立的測試憑證,嘗試從瀏覽器存取 HTTPS 位址時 (例如 https://localhost/servicemodelsamples/service.svc),會顯示安全性警示。

另請參閱