我想要通过web.config 配置以下(精简)代码
var security = new TransportSecurityBindingElement();
security.EndpointSupportingTokenParameters.SignedEncrypted.Add(new UserNameSecurityTokenParameters());
var binding = new CustomBinding(security);
是否可以使用web配置来配置此自定义绑定?如果可能,我如何配置支持令牌参数的端点?我已经尝试了以下配置,但它不能针对DotNetConfig.xsd:进行验证
<system.serviceModel>
<bindings>
<customBinding>
<binding name="SomeBinding" closeTimeout="00:01:00" openTimeout="00:01:00" receiveTimeout="00:10:00" sendTimeout="00:01:00">
<transportSecurity> <!-- Fails validation -->
<!-- How do I configure the EndpointSupportingTokenParameters -->
</transportSecurity>
</binding>
</customBinding>
</bindings>
<client>
...
</client>
</system.serviceModel>
我认为您只需要使用customBinding/security
,也许使用UserNameOverTransport
:的authenticationMode
<system.serviceModel>
<bindings>
<customBinding>
<binding>
<security authenticationMode="UserNameOverTransport" />
</binding>
</customBinding>
</bindings>
</system.serviceModel>
如果失败,您可以尝试手动将令牌添加到issuedTokenParameters
:
<system.serviceModel>
<bindings>
<customBinding>
<binding>
<security authenticationMode="UserNameOverTransport">
<issuedTokenParameters tokenType="http://schemas.microsoft.com/ws/2006/05/identitymodel/tokens/UserName" />
</security>
</binding>
</customBinding>
</bindings>
</system.serviceModel>
(令牌类型从UserNameSecurityTokenParameters
被盗)
老实说,这可能太麻烦了,所以在代码中更容易做到。如果每个环境需要不同,请在配置中定义工厂,并使用DI来创建绑定。