1

我正在.net core 2.1 上运行一个应用程序。我通过已成功生成 WcfServiceClient 的连接服务添加了 wsdl Web 服务。

使用Basic Autorization时,它工作正常

这是我用来调用 helloword soap 方法的类:

public string HellowWorld(string input)
{
    string wsRes = null;
    try
    {
        var service = new WorkerProcessServiceClient();
        var url = $"http://ServerUrl/Directory/WsName.svc";
        UriBuilder uriBuilder = new UriBuilder(url);

        service.Endpoint.Address = new EndpointAddress(uriBuilder.Uri);
        service.ClientCredentials.UserName.UserName = Username;
        service.ClientCredentials.UserName.Password = Password;

        using (OperationContextScope scope = new OperationContextScope(service.InnerChannel))
        {
            HttpRequestMessageProperty httpRequestProperty = new HttpRequestMessageProperty();
            httpRequestProperty.Headers[System.Net.HttpRequestHeader.Authorization] =
                "Basic " + Convert.ToBase64String(Encoding.ASCII.GetBytes(service.ClientCredentials.UserName.UserName
                + ":"
                + service.ClientCredentials.UserName.Password));
            OperationContext.Current.OutgoingMessageProperties[HttpRequestMessageProperty.Name] = httpRequestProperty;
            wsRes = service.HelloWorldAsync(input, RetailContext).GetAwaiter().GetResult();
            service.Close();
        }
    }
    catch (Exception ex)
    {
        wsRes = ex.Message;
    }
    return wsRes;
}

这适用于在Basic Authorization上运行的服务器。我在SOAP UI中使用相同的凭据,并且运行良好。我什至不需要指定 在此处输入图像描述

<==> 现在的问题 <=>

我有第二台使用NTLM Authorization运行的服务器。我都做了:'(但似乎没有任何效果。

1 - 我改变了我service.clientCredential.Usernameservice.clientCredential.Windows添加了service.clientCredential.Windows.domain

2 - 我也将标题更改"Basic " + Convert..."Ntlm " + Convert...

3 - 我在标题中添加了域,并将其放在首位和末位。

当我使用SOAP UI时,它工作得很好。 在此处输入图像描述

我不知道还能做什么请帮忙。

4

2 回答 2

5

我终于发现了。

所以在这里我的新代码通过 NTLM 授权获得服务

    private WcfServiceClient MyNtlmConfiguredService()
    {
        BasicHttpBinding basicHttpBinding = new BasicHttpBinding();
        basicHttpBinding.Security.Mode = BasicHttpSecurityMode.TransportCredentialOnly;
        //this is for enabling Ntlm if you wanna work with basic you just 
        // you just replace HttpClientCredentialType.Ntlm by HttpClientCredentialType.Basic
        basicHttpBinding.Security.Transport.ClientCredentialType = HttpClientCredentialType.Ntlm;

        EndpointAddress endpoint = new EndpointAddress("http://ServerUrl/Directory/WsName.svc");

        var client = new WcfServiceClient(basicHttpBinding, endpoint);

        NetworkCredential myCreds = new NetworkCredential("Username", "pas**rd", "Domain");

        client.ClientCredentials.Windows.ClientCredential = myCreds;
        client.ClientCredentials.Windows.AllowedImpersonationLevel = System.Security.Principal.TokenImpersonationLevel.Impersonation;

        return client;
    }

然后你正常调用你的WebService

MyNtlmConfiguredService().HellowWorld(input).getAwaiter().getResult();

现在对于基本授权:

    private CustomerWcfServiceClient MyBasicConfiguredService()
    {
        var service = new CustomerWcfServiceClient();
        CustomerWcfServiceClient client = null;
        string wsRes = null;

        BasicHttpBinding basicHttpBinding = new BasicHttpBinding();
        basicHttpBinding.Security.Mode = BasicHttpSecurityMode.TransportCredentialOnly;//mandatory
        basicHttpBinding.Security.Transport.ClientCredentialType = HttpClientCredentialType.Basic;//mandatory

        EndpointAddress endpoint = new EndpointAddress("http://ServerUrl/Directory/WsName.svc");

        client = new CustomerWcfServiceClient(basicHttpBinding, endpoint);


        client.ClientCredentials.UserName.UserName = "UserName";
        client.ClientCredentials.UserName.Password = "Pa**word";

        return client;
    }

然后你正常调用你的WebService

MyBasicConfiguredService().HellowWorld(input).getAwaiter().getResult();

祝大家编码愉快

于 2018-12-20T18:00:04.503 回答
0

对于 Windows 身份验证,传递运行标识的 .net 核心应用程序,例如,当您在 IIS 中托管时,它运行传递应用程序标识。

这里有两个选择:

  1. 配置在域帐户用户下运行的 .net core 应用程序。

  2. 如果您更喜欢在代码中配置用户名和密码,您可以尝试WindowsIdentity.RunImpersonated. 

    public class HomeController : Controller
{
    [DllImport("advapi32.dll", SetLastError = true, CharSet = CharSet.Unicode)]
    public static extern bool LogonUser(String lpszUsername, String lpszDomain, String lpszPassword,
            int dwLogonType, int dwLogonProvider, out SafeAccessTokenHandle phToken);
    const int LOGON32_PROVIDER_DEFAULT = 0;
    //This parameter causes LogonUser to create a primary token.   
    const int LOGON32_LOGON_INTERACTIVE = 2;
    public IActionResult About()
    {
        SafeAccessTokenHandle safeAccessTokenHandle;
        bool returnValue = LogonUser("username", "domain", "password",
            LOGON32_LOGON_INTERACTIVE, LOGON32_PROVIDER_DEFAULT,
            out safeAccessTokenHandle);
        WindowsIdentity.RunImpersonated(safeAccessTokenHandle, () =>
        {
            NTLMWebServiceSoapClient client = new NTLMWebServiceSoapClient(NTLMWebServiceSoapClient.EndpointConfiguration.NTLMWebServiceSoap);
            var result = client.HelloWorldAsync().Result;
            ViewData["Message"] = result.Body.HelloWorldResult;
        });

        return View();
    }

}
于 2018-12-20T06:00:02.043 回答