a. Have a WCF-service hosted on IIS (6.0)
b. Pass user's AD-credentials to the WCF-service
c. NOT use SSL/HTTPS
So in IIS I have disabled anonymous access and specified "integrated
Windows authentication".
I have tried to use wsHttpBinding, but as far as I can figure out,
wsHttpBinding with security mode "TransportWithMessageCredential" demands
HTTPS.
Is this correct?
My service is configured as
<service behaviorConfiguration="BLST.DataService.WCF.BWServ iceBehavior"
name="BLST.DataService.WCF.BWService"
><endpoint address=""
binding="wsHttpBinding"
bindingConfiguration="ADCredentialsBinding"
contract="BLST.DataService.WCF.IBWService"
><identity>
<dns value="localhost" />
</identity>
</endpoint>
<endpoint address="mex"
binding="mexHttpBinding"
contract="IMetadataExchange"/>
<host>
<baseAddresses>
<add
baseAddress="http://localhost:8731/Design_Time_Addresses/BLST.DataService
..WCF/BWService/" />
</baseAddresses>
</host>
</service>
My binding "ADCredentialsBinding" is defined as
<bindings>
<wsHttpBinding>
<binding name="ADCredentialsBinding">
<security mode="TransportWithMessageCredential">
<transport clientCredentialType="Windows"/>
</security>
</binding>
</wsHttpBinding>
</bindings>
The funny thing is that when I look at the WSDL generated by my
service.svc, it is (the last part, anyway)
<wsdl:service name="BWService">
<wsdl:port
name="WSHttpBinding_IBWService"
binding="tns:WSHttpBinding_IBWService">
<soap12:address
location="https://dkljessto.denmark.ecsoft/WCF/servicehost.svc"/>
<wsa10:EndpointReference><wsa10:Address>
https://dkljessto.denmark.ecsoft/WCF/servicehost.svc</wsa10:Address>
<Identity
xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
<Dns>localhost</Dns>
</Identity>
</wsa10:EndpointReference>
</wsdl:port>
</wsdl:service>
(notice the small 's' in the protocol-prefix of
https://mymachine.denmark.myaddomain...ervicehost.svc)
Is my understanding correct - and if it is - which binding should I turn
to instead?
--
Jesper Lund Stocholm
http://idippedut.dk