7

我正在尝试使用受用户/通行证保护的第三方 Web 服务。我相信我已经完成了对用户进行身份验证和设置并通过所需的操作,但它似乎没有将它们包含在 http 标头或其他东西中......

试图打电话时;

nameList.AddRange(service.getBlobNameByIdAndSectionId(section, id))

我收到此错误;

No user name and/or password is available, name: null, password: null

完整代码:

Private Function GetVendorService() As Services.ServiceClient
    Dim binding As New BasicHttpBinding(BasicHttpSecurityMode.Transport)

    binding.Security.Message.ClientCredentialType = BasicHttpMessageCredentialType.UserName
    binding.Security.Transport.ClientCredentialType = HttpClientCredentialType.Basic
    Dim ea As New EndpointAddress(GetVendorServiceURL())

    Dim service As New Services.ServiceClient(binding, ea)
    service.ClientCredentials.UserName.UserName = "user"
    service.ClientCredentials.UserName.Password = "password"

    Return service

End Function

Public Function GetVendorServiceURL() As String
    Select Case Informix.HostType
        Case HostServerType.Stage
            Return "https://url-s.net:8443/cxf/Service/v1/ws"
        Case HostServerType.Dev
            Return "https://url-d.net:8443/cxf/Service/v1/ws"
        Case Else 'Live
            Return "https://url.net:8443/cxf/Service/v1/ws"
    End Select
End Function

Private Function GetPdfListById(ByVal Id As Integer, ByVal Section As SectionId) As List(Of Services.blobName)
    Dim service As Services.ServiceClient = GetVendorService()
    Dim nameList As New List(Of Services.blobName)
    service.Open()
    nameList.AddRange(service.getBlobNameByIdAndSectionId(section, id))
    service.Close()
    Return nameList
End Function

应用程序配置

<system.serviceModel>
<bindings>
  <basicHttpBinding>
    <binding name="ServiceSoapBinding" closeTimeout="00:01:00"
      openTimeout="00:01:00" receiveTimeout="00:10:00" sendTimeout="00:01:00"
      allowCookies="false" bypassProxyOnLocal="false" hostNameComparisonMode="StrongWildcard"
      maxBufferSize="65536" maxBufferPoolSize="524288" maxReceivedMessageSize="65536"
      messageEncoding="Text" textEncoding="utf-8" transferMode="Buffered"
      useDefaultWebProxy="true">
      <readerQuotas maxDepth="32" maxStringContentLength="8192" maxArrayLength="16384"
        maxBytesPerRead="4096" maxNameTableCharCount="16384" />
      <security mode="Transport">
        <transport clientCredentialType="None" proxyCredentialType="None"
          realm="" />
        <message clientCredentialType="UserName" algorithmSuite="Default" />
      </security>
    </binding>
  </basicHttpBinding>
</bindings>
<client>
  <endpoint address="https://url.net:8443/cxf/Service/v1/ws"
    binding="basicHttpBinding" bindingConfiguration="ServiceSoapBinding"
    contract="Services.Service"
    name="ServiceSoapPort" />
</client>

4

2 回答 2

7

经过很多问题后,我发现由于某种原因 Authorization 标头没有被发送到服务。为了包含它,我必须执行以下操作来调用服务。我仍然困惑的是为什么这是一个问题。从我认为 BasicHttpBinding 默认情况下应该在标头中包含凭据?任何人对为什么这对我来说是一个问题的任何见解将不胜感激。一个好的答案可能仍然会得到+50。

Private Function GetPdfListById(ByVal Id As Integer, ByVal Section As SectionId) As List(Of VendorGuideService.vogBlobName)
    Using service As Service.ServiceClient = GetVendorService()
        Dim nameList As New List(Of Service.blobName)
        Using scope As ServiceModel.OperationContextScope = New ServiceModel.OperationContextScope(service.InnerChannel)
            Dim request As New ServiceModel.Channels.HttpRequestMessageProperty()
            request.Headers.Add("Authorization", "Basic " & Convert.ToBase64String(System.Text.Encoding.ASCII.GetBytes(service.ClientCredentials.UserName.UserName & ":" & _
                                                                                                    service.ClientCredentials.UserName.Password)))
            ServiceModel.OperationContext.Current.OutgoingMessageProperties(ServiceModel.Channels.HttpRequestMessageProperty.Name) = request
            nameList.AddRange(service.getBlobNameByIdAndSectionId(section, id))
        End Using
        Return nameList
    End Using
End Function
于 2013-05-07T18:04:51.490 回答
1

如果所需的身份验证仅为 HTTP Basic,则需要指定 basicHttpBinding 的安全性,如下所示:

<basicHttpBinding>
    <binding ...>
        <security mode="TransportCredentialOnly">
            <transport clientCredentialType="Basic" />
        </security>
    </binding>
</basicHttpBinding>

您当然可以选择在代码中指定这些。

实际凭据必须始终在代码中给出:

client.ClientCredentials.UserName.UserName = "userName";
client.ClientCredentials.UserName.Password = "password";
于 2013-05-03T18:23:21.473 回答