WCF SAML 1.1 Mijozlar soni

Mana senariy:

1) WCF mijozi STSni RST/Raqam so'rovi orqali SAML belgisini talab qilmoqda

2) STS RSTRC/IssueFinal bilan SAML tokenini javob sarlavhasiga joylashtirish bilan javob beradi

3) WCF mijozi SAML tokenini biznes veb-xizmatiga taklif qiladi

STS va veb-xizmati Java muhitida joylashtirilgan. 1) va 2) yaxshi ishlaydi, Ya'ni, SOAP sarlavhasi va tanasi to'g'ri o'rnatilgani bilan STS kutilgan tarzda javob berishi mumkin.

Endi esa, muammo STSdan javob olgandan so'ng, WCF mijozi, albatta, biznes veb-xizmatiga xavfsizlik kontekstiga oid so'rov yuboradi va bu qanday va nima uchun ekanligini bilmayman.

Bu mening mijozim uchun app.config.

<?xml version="1.0" encoding="utf-8" ?>





  
    
      
    
  





  
            
  
  
    




  



  


WCF mijozi STS (SAMS) dan SAML belgisini olganidan keyin yuboradi (qisqartirilgan):

<?xml version="1.0" encoding="UTF-8"?>


http://schemas.xmlsoap.org/ws/2005/02/trust/RST/SCT
urn:uuid:fecde50b-a3bd-40f1-ae5b-662a3aa9bf80
bfce2552-393d-43d0-8722-0c16ae22bba4

  http://www.w3.org/2005/08/addressing/anonymous

https://10.11.71.151/soap/RegistryStoredQuery


  2011-10-28T07:27:50.097Z
  2011-10-28T07:32:50.097Z

 .... 


...




  
  http://schemas.xmlsoap.org/ws/2005/02/sc/sct
  http://schemas.xmlsoap.org/ws/2005/02/trust/Issue
  
    iRqJf4/sY1yiu7Vh1eTGeAWJi7o0gxnhS6A2YvJQ6kI=
  
256



Ushbu xatti-harakatga nima olib kelishi mumkin bo'lgan har qanday fikrlar?

Yaxshi tilaklar.

2

1 javoblar

wsFederationHttpBinding has secure session set to true by default. You'll need to clone a custom binding and set this to false.

0
qo'shib qo'ydi