EndpointIdentity.CreateDnsIdentity(String) 方法

定義

命名空間:

System.ServiceModel

組件:

System.ServiceModel.dll

使用指定的 DNS 名稱建立 DNS 身分識別。

public:
 static System::ServiceModel::EndpointIdentity ^ CreateDnsIdentity(System::String ^ dnsName);

public static System.ServiceModel.EndpointIdentity CreateDnsIdentity (string dnsName);

static member CreateDnsIdentity : string -> System.ServiceModel.EndpointIdentity

Public Shared Function CreateDnsIdentity (dnsName As String) As EndpointIdentity

參數

dnsName

String

DNS 身分識別的名稱。

傳回

EndpointIdentity

與指定之 關聯的 DNS 。

例外狀況

ArgumentNullException

dnsName 為 null。

範例

下列程式碼將示範如何呼叫這個方法。

public static void CreateRSAIdentity()
{
    // Create a ServiceHost for the CalculatorService type. Base Address is supplied in app.config.
    using (ServiceHost serviceHost = new ServiceHost(typeof(CalculatorService)))
    {
        // The base address is read from the app.config.
        Uri dnsrelativeAddress = new Uri(serviceHost.BaseAddresses[0], "dnsidentity");
        Uri certificaterelativeAddress = new Uri(serviceHost.BaseAddresses[0], "certificateidentity");
        Uri rsarelativeAddress = new Uri(serviceHost.BaseAddresses[0], "rsaidentity");

        // Set the service's X509Certificate to protect the messages.
        serviceHost.Credentials.ServiceCertificate.SetCertificate(StoreLocation.LocalMachine,
                                                                  StoreName.My,
                                                                  X509FindType.FindBySubjectDistinguishedName,
                                                                  "CN=identity.com, O=Contoso");
        //Cache a reference to the server's certificate.
        X509Certificate2 servercert = serviceHost.Credentials.ServiceCertificate.Certificate;

        //Create endpoints for the service using a WSHttpBinding set for anonymous clients.
        WSHttpBinding wsAnonbinding = new WSHttpBinding(SecurityMode.Message);
        //Clients are anonymous to the service.
        wsAnonbinding.Security.Message.ClientCredentialType = MessageCredentialType.None;
        //Secure conversation (session) is turned off.
        wsAnonbinding.Security.Message.EstablishSecurityContext = false;

        //Create a service endpoint and change its identity to the DNS for an X509 Certificate.
        ServiceEndpoint ep = serviceHost.AddServiceEndpoint(typeof(ICalculator),
                                                            wsAnonbinding,
                                                            String.Empty);
        EndpointAddress epa = new EndpointAddress(dnsrelativeAddress, EndpointIdentity.CreateDnsIdentity("identity.com"));
        ep.Address = epa;

        //Create a service endpoint and change its identity to the X509 certificate's RSA key value.
        ServiceEndpoint ep3 = serviceHost.AddServiceEndpoint(typeof(ICalculator), wsAnonbinding, String.Empty);
        EndpointAddress epa3 = new EndpointAddress(rsarelativeAddress, EndpointIdentity.CreateRsaIdentity(servercert));
        ep3.Address = epa3;

備註

連線到具有此身分識別之端點的安全 WCF 用戶端會驗證服務器所提供的宣告是否包含代表此身分識別的 DNS 宣告。

這個靜態方法會呼叫其建構函式 DnsEndpointIdentity，藉此建立 DnsEndpointIdentity 的執行個體。