在 HTTPS 上托管 WCF Windows 服务
Host WCF Windows Service on HTTPS
我正在尝试配置使用 https 上的 windows 服务托管的 WCF 服务。
该服务适用于 http,但似乎不适用于 https。
配置文件(适用于 http):
<?xml version="1.0" encoding="utf-8" ?>
<configuration>
<system.serviceModel>
<serviceHostingEnvironment aspNetCompatibilityEnabled="false" />
<!-- Set up Custom Behaviors -->
<behaviors>
<serviceBehaviors>
<behavior name="CalculatorServiceBehavior">
<serviceMetadata httpGetEnabled="true" httpsGetUrl="true" />
<serviceDebug includeExceptionDetailInFaults="true"/>
</behavior>
</serviceBehaviors>
</behaviors>
<!-- Set up the binding configuration -->
<bindings>
<wsHttpBinding>
<binding name="HttpsSOAPBinding">
<security mode="Transport">
<transport clientCredentialType="None"/>
</security>
</binding>
<binding name="HttpSOAPBinding">
<security mode="None" />
</binding>
</wsHttpBinding>
</bindings>
<services>
<service name="Microsoft.ServiceModel.Samples.CalculatorService"
behaviorConfiguration="CalculatorServiceBehavior">
<host>
<baseAddresses>
<add baseAddress="http://server_name:8080/ServiceModelSamples/service"/>
</baseAddresses>
</host>
<endpoint address=""
binding="wsHttpBinding"
bindingConfiguration="HttpSOAPBinding"
contract="Microsoft.ServiceModel.Samples.ICalculator" />
<endpoint address="mex"
binding="mexHttpBinding"
contract="IMetadataExchange" />
</service>
</services>
</system.serviceModel>
</configuration>
我更改了 https 的以下设置:
- 将 wsHttpBinding 端点绑定配置更改为 HttpsSOAPBinding
- 将基地址更改为 https://server_name:8080/ServiceModelSamples/service"
- 将 mex 端点绑定更改为 mexHttpsBinding
我也已将端口 8080 附加到 ssl 证书。
netsh http 显示 sslcert
IP:port : 0.0.0.0:8080
Certificate Hash : 12ea34b0e1e46b12346ae04834cf1deaefb52f33
Application ID : {cba53ac4-6ecf-4a49-8aq3-z6c61e2ce9a1}
Certificate Store Name : (null)
Verify Client Certificate Revocation : Enabled
Verify Revocation Using Cached Client Certificate Only : Disabled
Usage Check : Enabled
Revocation Freshness Time : 0
URL Retrieval Timeout : 0
Ctl Identifier : (null)
Ctl Store Name : (null)
DS Mapper Usage : Disabled
Negotiate Client Certificate : Disabled
有什么遗漏吗?
所以你表示你不确定端口是否打开。我会尝试使用 telnet 命令来查看您的端口是否可以从您尝试从中访问服务的机器访问。为此,您需要在命令提示符下使用以下命令。
telnet 192.168.1.1 8080
现在您需要用您的服务器 IP 地址替换 192.168.1.1。
您可能还想尝试找出您的问题是否与防火墙有关,或者该服务是否登录到服务器本身并尝试在该服务器上本地访问您的服务。
http://localhost:8080/ServiceModelSamples/service
当然这是假设你有能力登录到服务器。
我正在尝试配置使用 https 上的 windows 服务托管的 WCF 服务。
该服务适用于 http,但似乎不适用于 https。
配置文件(适用于 http):
<?xml version="1.0" encoding="utf-8" ?>
<configuration>
<system.serviceModel>
<serviceHostingEnvironment aspNetCompatibilityEnabled="false" />
<!-- Set up Custom Behaviors -->
<behaviors>
<serviceBehaviors>
<behavior name="CalculatorServiceBehavior">
<serviceMetadata httpGetEnabled="true" httpsGetUrl="true" />
<serviceDebug includeExceptionDetailInFaults="true"/>
</behavior>
</serviceBehaviors>
</behaviors>
<!-- Set up the binding configuration -->
<bindings>
<wsHttpBinding>
<binding name="HttpsSOAPBinding">
<security mode="Transport">
<transport clientCredentialType="None"/>
</security>
</binding>
<binding name="HttpSOAPBinding">
<security mode="None" />
</binding>
</wsHttpBinding>
</bindings>
<services>
<service name="Microsoft.ServiceModel.Samples.CalculatorService"
behaviorConfiguration="CalculatorServiceBehavior">
<host>
<baseAddresses>
<add baseAddress="http://server_name:8080/ServiceModelSamples/service"/>
</baseAddresses>
</host>
<endpoint address=""
binding="wsHttpBinding"
bindingConfiguration="HttpSOAPBinding"
contract="Microsoft.ServiceModel.Samples.ICalculator" />
<endpoint address="mex"
binding="mexHttpBinding"
contract="IMetadataExchange" />
</service>
</services>
</system.serviceModel>
</configuration>
我更改了 https 的以下设置:
- 将 wsHttpBinding 端点绑定配置更改为 HttpsSOAPBinding
- 将基地址更改为 https://server_name:8080/ServiceModelSamples/service"
- 将 mex 端点绑定更改为 mexHttpsBinding
我也已将端口 8080 附加到 ssl 证书。
netsh http 显示 sslcert
IP:port : 0.0.0.0:8080
Certificate Hash : 12ea34b0e1e46b12346ae04834cf1deaefb52f33
Application ID : {cba53ac4-6ecf-4a49-8aq3-z6c61e2ce9a1}
Certificate Store Name : (null)
Verify Client Certificate Revocation : Enabled
Verify Revocation Using Cached Client Certificate Only : Disabled
Usage Check : Enabled
Revocation Freshness Time : 0
URL Retrieval Timeout : 0
Ctl Identifier : (null)
Ctl Store Name : (null)
DS Mapper Usage : Disabled
Negotiate Client Certificate : Disabled
有什么遗漏吗?
所以你表示你不确定端口是否打开。我会尝试使用 telnet 命令来查看您的端口是否可以从您尝试从中访问服务的机器访问。为此,您需要在命令提示符下使用以下命令。
telnet 192.168.1.1 8080
现在您需要用您的服务器 IP 地址替换 192.168.1.1。
您可能还想尝试找出您的问题是否与防火墙有关,或者该服务是否登录到服务器本身并尝试在该服务器上本地访问您的服务。
http://localhost:8080/ServiceModelSamples/service
当然这是假设你有能力登录到服务器。