webHttpBinding WCF service responds over HTTP but not HTTPS
I am developing a WCF restfull service on my machine and when I hit the HTTP service endpoint the service responded as expected. However, when I hit the HTTPS endpoint I get a 404 Not Found back.
The Https call does not fire the CustomAuthorizationManager that has been implemented as the serviceAuthorizationManagerType
Any idea why this is not working? Why is it allowing HTTP traffic when the base address is HTTPS?
HTTP response
HTTPS response
Web.config
<system.serviceModel>
<bindings>
<webHttpBinding>
<binding name="webHttpTransportSecurity">
<security mode="TransportCredentialOnly">
<!--Basic authentication is NOT supported when running webHttpBinding through IIS
see - http://blogs.msdn.com/b/phenning/archive/2008/01/11/custom-usernamepassword-validators-in-net-framework-3-5.aspx
and a resolution - http://allen-conway-dotnet.blogspot.co.uk/2012/07/using-basic-authentication-in-rest.html-->
<transport clientCredentialType="None"/>
</security>
</binding>
</webHttpBinding>
</bindings>
<services>
<service behaviorConfiguration="restfulBehavior" name="Chubb.SurveyRecommendations.Service.SurveyRecommendationsService">
<!--webHttpBinding allows exposing service methods in a RESTful manner-->
<endpoint address="" binding="webHttpBinding" bindingConfiguration="webHttpTransportSecurity" behaviorConfiguration="webHttpBehavior" contract="Chubb.SurveyRecommendations.Service.ISurveyRecommendations"/>
<endpoint address="mex" binding="mexHttpsBinding" contract="IMetadataExchange"/>
<host>
<baseAddresses>
<add baseAddress="https://localhost:44300/"/>
</baseAddresses>
</host>
</service>
</services>
<behaviors>
<serviceBehaviors>
<behavior name="restfulBehavior">
<serviceMetadata httpGetEnabled="false" httpsGetEnabled="true"/>
<serviceDebug includeExceptionDetailInFaults="false"/>
<serviceAuthorization serviceAuthorizationManagerType="Chubb.SurveyRecommendations.Service.Security.CustomAuthorizationManager, Chubb.SurveyRecommendations.Service"/>
</behavior>
</serviceBehaviors>
<!--Required default endpoint behavior when using webHttpBinding-->
<endpointBehaviors>
<behavior name="webHttpBehavior">
<webHttp/>
</behavior>
</endpointBehaviors>
</behaviors>
</system.serviceModel>
Contract
[OperationContract]
[WebGet(UriTemplate = "Echo/{value}", BodyStyle = WebMessageBodyStyle.Bare, RequestFormat = WebMessageFormat.Xml, ResponseFormat = WebMessageFormat.Xml)]
string Echo(string value);
Service
public class SurveyRecommendationsService : ISurveyRecommendations
{
public string Echo(string value)
{
if (string.IsNullOrWhiteSpace(value))
return string.Empty;
return value;
}
}
Solution
OK, the problem was with the binding.
security mode="TransportCredentialOnly" was specified which does not provide full transport (HTTPS) secuirty.
I changed the value back to security mode="Transport" and it worked as anticipated.
Details can be found in this MSDN article
None - Indicates no security is used with HTTP requests.
Transport - Indicates that transport-level security is used with HTTP requests.
TransportCredentialOnly - Indicates that only HTTP-based client authentication is provided.
- Possible to Compile ASP.NET to Machine Code?
- Run a C# Program without having .NET Framework
- Differences Between .NET vs .NET Core vs .NET Standard vs .NET Framework and Resolving The Confusion
- Resource Compiler question (initially posed as "UAC together with Subst don't work well together")
- Does NGEN'ing a .NET application help protect it from reverse engineering? If not when would I use it?
- MS C# compiler and non-optimized code
- Fire comboBox SelectedIndexChanged only from user click
- Upgrading my Azure function to .net8 fails with the error Could not load file or assembly 'System.Linq, Version=8.0.0.0
- How to authenticate and consume Sonarcloud API with .NET
- Why and how does C# allow accessing private variables outside the class itself when it's within the same containing class?
- Using f suffix for numeric literals
- ONNX model is not returning predictions in C#
- How to convert string to code in vb.net and to view static or public variables of main project
- How can I draw multi-colored text using graphics class on panel?
- Updating WPF list when item changes
- WPF ScrollViewer horizontal scrolling with buttons
- How to align datagrid elements to the right in MudBlazor
- Local development with Azure SignalR Service and Azure Functions
- How can I get a StackPanel-like layout in WinForms
- JsonConverter. VS.net does not allow implementation of abstract class / NewtonsoftJson
- Making C# Class Library COM-Visible in Visual Studio 2022
- Detecting and casting Linq expressions accordingly
- Textbox padding
- System.DirectoryServices.DirectoryServicesCOMException: An operations error occurred
- Azure Pipeline - How to execute .exe file via cmd
- ASP.Net Core Background Service with Task Queue, does it need a Task.Delay?
- How to implement a singleton in C#?
- TargetedPatchingOptOut: "Performance critical to inline across NGen image boundaries"?
- Is this valid C# code?
- Type checking fun with function interfaces parameters in VB.Net