#region License Information
/* HeuristicLab
* Copyright (C) 2002-2019 Heuristic and Evolutionary Algorithms Laboratory (HEAL)
*
* This file is part of HeuristicLab.
*
* HeuristicLab is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* HeuristicLab is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with HeuristicLab. If not, see .
*/
#endregion
using System;
using System.Security.Cryptography.X509Certificates;
using System.ServiceModel;
using System.ServiceModel.Description;
using System.ServiceModel.Security;
using HeuristicLab.Clients.Common.Properties;
namespace HeuristicLab.Clients.Common {
public static class ClientFactory {
#region CreateClient Methods
public static T CreateClient()
where T : ClientBase, I
where I : class {
return CreateClient(null, null);
}
public static T CreateClient(string endpointConfigurationName)
where T : ClientBase, I
where I : class {
return CreateClient(endpointConfigurationName, null);
}
public static T CreateClient(string endpointConfigurationName, string remoteAddress)
where T : ClientBase, I
where I : class {
return CreateClient(endpointConfigurationName, remoteAddress, Settings.Default.UserName, CryptoService.DecryptString(Settings.Default.Password));
}
public static T CreateClient(string endpointConfigurationName, string remoteAddress, string userName, string password)
where T : ClientBase, I
where I : class {
T client;
if (string.IsNullOrEmpty(endpointConfigurationName)) {
client = Activator.CreateInstance();
} else {
client = (T)Activator.CreateInstance(typeof(T), endpointConfigurationName);
}
if (!string.IsNullOrEmpty(remoteAddress)) {
SetEndpointAddress(client.Endpoint, remoteAddress);
}
client.ClientCredentials.UserName.UserName = userName;
client.ClientCredentials.UserName.Password = password;
client.ClientCredentials.ServiceCertificate.Authentication.CertificateValidationMode = X509CertificateValidationMode.ChainTrust;
// we (jkarder + abeham) have disabled the revocation check for now
// the certificate requires OCSP instead of CRL for revocation checks, but the OCSP check fails
// we currently don't know why this is the case, because we observed a valid OCSP request/response using wireshark
client.ClientCredentials.ServiceCertificate.Authentication.RevocationMode = X509RevocationMode.NoCheck;
return client;
}
#endregion
#region CreateChannelFactory Methods
public static ChannelFactory CreateChannelFactory(string endpointConfigurationName)
where I : class {
return CreateChannelFactory(endpointConfigurationName, null);
}
public static ChannelFactory CreateChannelFactory(string endpointConfigurationName, string remoteAddress)
where I : class {
return CreateChannelFactory(endpointConfigurationName, remoteAddress, Settings.Default.UserName, CryptoService.DecryptString(Settings.Default.Password));
}
public static ChannelFactory CreateChannelFactory(string endpointConfigurationName, string remoteAddress, string userName, string password)
where I : class {
ChannelFactory channelFactory = new ChannelFactory(endpointConfigurationName);
if (!string.IsNullOrEmpty(remoteAddress)) {
SetEndpointAddress(channelFactory.Endpoint, remoteAddress);
}
channelFactory.Credentials.UserName.UserName = userName;
channelFactory.Credentials.UserName.Password = password;
channelFactory.Credentials.ServiceCertificate.Authentication.CertificateValidationMode = X509CertificateValidationMode.ChainTrust;
// we (jkarder + abeham) have disabled the revocation check for now
// the certificate requires OCSP instead of CRL for revocation checks, but the OCSP check fails
// we currently don't know why this is the case, because we observed a valid OCSP request/response using wireshark
channelFactory.Credentials.ServiceCertificate.Authentication.RevocationMode = X509RevocationMode.NoCheck;
return channelFactory;
}
#endregion
#region Helpers
private static void SetEndpointAddress(ServiceEndpoint endpoint, string remoteAddress) {
// change the endpoint address and preserve the identity certificate defined in the config file
EndpointAddressBuilder endpointAddressBuilder = new EndpointAddressBuilder(endpoint.Address);
UriBuilder uriBuilder = new UriBuilder(endpointAddressBuilder.Uri);
uriBuilder.Host = remoteAddress;
endpointAddressBuilder.Uri = uriBuilder.Uri;
endpoint.Address = endpointAddressBuilder.ToEndpointAddress();
}
#endregion
}
}