Changeset 1579

Timestamp:

04/16/09 17:44:58 (16 years ago)

Author:

mbecirov

Message:

#528: WCF Service secured - you need to install the certificate in order to run the application properly!

Location:

trunk/sources

Files:

• HeuristicLab.Hive.Client.Communication/3.2/HeuristicLab.Hive.Client.Communication-3.2.csproj (modified) (2 diffs)
• HeuristicLab.Hive.Client.Communication/3.2/WcfService.cs (modified) (1 diff)
• HeuristicLab.Hive.Client.Communication/3.2/app.config (deleted)
• HeuristicLab.Hive.Client.Console/3.2/HeuristicLab.Hive.Client.Console-3.2.csproj (modified) (4 diffs)
• HeuristicLab.Hive.Client.Console/3.2/HiveClientConsole.cs (modified) (2 diffs)
• HeuristicLab.Hive.Client.Console/3.2/app.config (modified) (1 diff)
• HeuristicLab.Hive.Client.Core/3.2/ClientConsoleService/ClientConsoleServer.cs (modified) (2 diffs)
• HeuristicLab.Hive.Contracts/3.2/WcfSettings.cs (modified) (3 diffs)
• HeuristicLab.Hive.Engine/3.2/HeuristicLab.Hive.Engine-3.2.csproj (modified) (2 diffs)
• HeuristicLab.Hive.Server.Console/3.2/ServiceLocator.cs (modified) (2 diffs)
• HeuristicLab.Hive.Server/3.2/HiveServerApplication.cs (modified) (4 diffs)

trunk/sources/HeuristicLab.Hive.Client.Communication/3.2/HeuristicLab.Hive.Client.Communication-3.2.csproj

@@ -4 +4 @@
     <Configuration Condition=" '$(Configuration)' == '' ">Debug</Configuration>
     <Platform Condition=" '$(Platform)' == '' ">AnyCPU</Platform>
-    <ProductVersion>9.0.30729</ProductVersion>
+    <ProductVersion>9.0.21022</ProductVersion>
     <SchemaVersion>2.0</SchemaVersion>
     <ProjectGuid>{AEB51212-CDBA-4FC6-A2EE-02359AA53ECE}</ProjectGuid>
@@ -96 +96 @@
   </ItemGroup>
   <ItemGroup>
-    <None Include="app.config" />
     <None Include="HeuristicLab.snk" />
     <None Include="Properties\AssemblyInfo.frame" />

trunk/sources/HeuristicLab.Hive.Client.Communication/3.2/WcfService.cs

@@ -75 +75 @@
       try {
         proxy = new ClientCommunicatorClient(
-          new NetTcpBinding(SecurityMode.None, true),
+          WcfSettings.GetBinding(),
           new EndpointAddress("net.tcp://" + ServerIP + ":" + ServerPort + "/HiveServer/ClientCommunicator")
         );

trunk/sources/HeuristicLab.Hive.Client.Console/3.2/HeuristicLab.Hive.Client.Console-3.2.csproj

@@ -4 +4 @@
     <Configuration Condition=" '$(Configuration)' == '' ">Debug</Configuration>
     <Platform Condition=" '$(Platform)' == '' ">AnyCPU</Platform>
-    <ProductVersion>9.0.30729</ProductVersion>
+    <ProductVersion>9.0.21022</ProductVersion>
     <SchemaVersion>2.0</SchemaVersion>
     <ProjectGuid>{8B14A35E-DBDF-43EB-B019-23E9FBC5A35E}</ProjectGuid>
@@ -121 +121 @@
     <EmbeddedResource Include="EventLogEntryForm.resx">
       <DependentUpon>EventLogEntryForm.cs</DependentUpon>
+      <SubType>Designer</SubType>
     </EmbeddedResource>
     <EmbeddedResource Include="HiveClientConsole.resx">
@@ -133 +134 @@
     <EmbeddedResource Include="Recurrence.resx">
       <DependentUpon>Recurrence.cs</DependentUpon>
+      <SubType>Designer</SubType>
     </EmbeddedResource>
     <Compile Include="Properties\Resources.Designer.cs">
@@ -164 +166 @@
   </ItemGroup>
   <ItemGroup>
+    <ProjectReference Include="..\..\HeuristicLab.Hive.Contracts\3.2\HeuristicLab.Hive.Contracts-3.2.csproj">
+      <Project>{134F93D7-E7C8-4ECD-9923-7F63259A60D8}</Project>
+      <Name>HeuristicLab.Hive.Contracts-3.2</Name>
+    </ProjectReference>
     <ProjectReference Include="..\..\HeuristicLab.PluginInfrastructure\HeuristicLab.PluginInfrastructure.csproj">
       <Project>{94186A6A-5176-4402-AE83-886557B53CCA}</Project>

trunk/sources/HeuristicLab.Hive.Client.Console/3.2/HiveClientConsole.cs

@@ -31 +31 @@
 using HeuristicLab.Hive.Client.Console.ClientService;
 using ZedGraph;
+using HeuristicLab.Hive.Contracts;
 
 namespace HeuristicLab.Hive.Client.Console
@@ -108 +109 @@
       try
       {
-        cccc = new ClientConsoleCommunicatorClient(new NetTcpBinding(), new EndpointAddress(ENDPOINTADRESS));
+        //changed by MB, 16.04.09
+        //cccc = new ClientConsoleCommunicatorClient(new NetTcpBinding(), new EndpointAddress(ENDPOINTADRESS));
+        cccc = new ClientConsoleCommunicatorClient(WcfSettings.GetBinding(), new EndpointAddress(ENDPOINTADRESS));
         cccc.GetStatusInfosCompleted += new EventHandler<GetStatusInfosCompletedEventArgs>(cccc_GetStatusInfosCompleted);
         cccc.GetCurrentConnectionCompleted += new EventHandler<GetCurrentConnectionCompletedEventArgs>(cccc_GetCurrentConnectionCompleted);

trunk/sources/HeuristicLab.Hive.Client.Console/3.2/app.config

@@ -6 +6 @@
         </sectionGroup>
     </configSections>
-    <system.serviceModel>
-        <bindings>
-            <netTcpBinding>
-                <binding name="NetTcpBinding_IClientConsoleCommunicator" closeTimeout="00:01:00"
-                    openTimeout="00:01:00" receiveTimeout="00:10:00" sendTimeout="00:01:00"
-                    transactionFlow="false" transferMode="Buffered" transactionProtocol="OleTransactions"
-                    hostNameComparisonMode="StrongWildcard" listenBacklog="10"
-                    maxBufferPoolSize="524288" maxBufferSize="65536" maxConnections="10"
-                    maxReceivedMessageSize="65536">
-                    <readerQuotas maxDepth="32" maxStringContentLength="8192" maxArrayLength="16384"
-                        maxBytesPerRead="4096" maxNameTableCharCount="16384" />
-                    <reliableSession ordered="true" inactivityTimeout="00:10:00"
-                        enabled="false" />
-                    <security mode="None">
-                        <transport clientCredentialType="None" protectionLevel="None" />
-                        <message clientCredentialType="None" />
-                    </security>
-                </binding>
-            </netTcpBinding>
-        </bindings>
-        <client>
-            <endpoint address="net.tcp://127.0.0.1:8000/ClientConsole/ClientConsoleCommunicator"
-                binding="netTcpBinding" bindingConfiguration="NetTcpBinding_IClientConsoleCommunicator"
-                contract="ClientService.IClientConsoleCommunicator" name="NetTcpBinding_IClientConsoleCommunicator">
-                <identity>
-                    <userPrincipalName value="mse08026@fhs-hagenberg.ac.at" />
-                </identity>
-            </endpoint>
-        </client>
-    </system.serviceModel>
-    <userSettings>
+       <userSettings>
         <HeuristicLab.Hive.Client.Console.Properties.Settings>
             <setting name="IpAdress" serializeAs="String">

trunk/sources/HeuristicLab.Hive.Client.Core/3.2/ClientConsoleService/ClientConsoleServer.cs

@@ -7 +7 @@
 using HeuristicLab.PluginInfrastructure;
 using HeuristicLab.Hive.Client.Core.ClientConsoleService.Interfaces;
+using HeuristicLab.Hive.Contracts;
 
 namespace HeuristicLab.Hive.Client.Core.ClientConsoleService {
@@ -36 +37 @@
                   uriTcp);
 
-        System.ServiceModel.Channels.Binding binding =
-          new NetTcpBinding();
-
         serviceHost.AddServiceEndpoint(
           typeof(IClientConsoleCommunicator),
-              binding,
+              WcfSettings.GetBinding(),
               "ClientConsoleCommunicator");
 

trunk/sources/HeuristicLab.Hive.Contracts/3.2/WcfSettings.cs

@@ -1 @@
-using System;
+#define USE_MSG_BINDING
+using System;
 using System.Collections.Generic;
 using System.Linq;
@@ -11 +12 @@
   public static class WcfSettings {
 
+    public const string SERVERCERT = "HIVE-Server";
+    public const int DEFAULTPORT = 9000;
+    
+    /// <summary>
+    /// Gets a pre-defined binding using TCP for secure transport.
+    /// </summary>
+    /// <returns>A binding type of <see cref="NetTcpBinding"/></returns>
     public static Binding GetBinding() {
+#if USE_MSG_BINDING
       NetTcpBinding binding = new NetTcpBinding(SecurityMode.Message);
+#else
+      NetTcpBinding binding = new NetTcpBinding(SecurityMode.TransportWithMessageCredential);
+      binding.Security.Message.ClientCredentialType = MessageCredentialType.Certificate;
+#endif
       return binding;
     }
 
+    /// <summary>
+    /// Defines the used certificate for authentification located in a certification store.
+    /// </summary>
+    /// <param name="svchost">A service for which this certificate is applicable.</param>
+    public static void SetServiceCertificate(ServiceHost svchost) {
+      svchost.Credentials.ServiceCertificate.SetCertificate(
+        StoreLocation.LocalMachine,
+        StoreName.My,
+        X509FindType.FindBySubjectName,
+        SERVERCERT);
+    }
+
+    /// <summary>
+    /// Gets the currently active IP address.
+    /// <remarks>If more than one IP connections is active, the first one will be used.</remarks>
+    /// </summary>
+    /// <returns></returns>
     public static string GetActiveIP() {
       return System.Net.NetworkInformation.IPGlobalProperties.GetIPGlobalProperties().GetActiveTcpConnections()[0].LocalEndPoint.Address.ToString();
     }
 
+    /// <summary>
+    /// Gets the default port used for HIVE services.
+    /// </summary>
+    /// <returns></returns>
     public static int GetDefaultPort() {
-      return 9000;
+      return DEFAULTPORT;
     }
   }
 
-  // WARNUNG: Dieser Code wird nur für Testzertifikate benötigt, wie sie beispielsweise von makecert erstellt werden. 
-  // Sie sollten diesen Code nicht in einer Produktionsumgebung verwenden.
+  /// <summary>
+  /// This class verifies the certificate defined by <see cref="SetServerCertificate"></see> method. Normally,
+  /// the verification process is managed by the underlying operating system.
+  /// </summary>
+  /// <remarks>
+  /// WARNUNG: Dieser Code wird nur für Testzertifikate benötigt, wie sie beispielsweise von makecert erstellt werden.
+  /// Sie sollten diesen Code nicht in einer Produktionsumgebung verwenden.
+  /// </remarks>
   public class PermissiveCertificatePolicy {
     string subjectName;
@@ -44 +84 @@
         return true;
       }
-
       return false;
     }

trunk/sources/HeuristicLab.Hive.Engine/3.2/HeuristicLab.Hive.Engine-3.2.csproj

@@ -4 +4 @@
     <Configuration Condition=" '$(Configuration)' == '' ">Debug</Configuration>
     <Platform Condition=" '$(Platform)' == '' ">AnyCPU</Platform>
-    <ProductVersion>9.0.30729</ProductVersion>
+    <ProductVersion>9.0.21022</ProductVersion>
     <SchemaVersion>2.0</SchemaVersion>
     <ProjectGuid>{C8FEDAC1-0326-4293-B585-F0FEDDEDFC11}</ProjectGuid>
@@ -130 +130 @@
     <EmbeddedResource Include="HiveEngineEditor.resx">
       <DependentUpon>HiveEngineEditor.cs</DependentUpon>
+      <SubType>Designer</SubType>
     </EmbeddedResource>
   </ItemGroup>

trunk/sources/HeuristicLab.Hive.Server.Console/3.2/ServiceLocator.cs

@@ -6 +6 @@
 using HeuristicLab.Hive.Contracts.Interfaces;
 using System.ServiceModel;
+using HeuristicLab.Hive.Contracts;
 
 namespace HeuristicLab.Hive.Server.ServerConsole {
@@ -27 +28 @@
         Port != String.Empty) {
 
-        NetTcpBinding binding =
-             new NetTcpBinding(SecurityMode.None, true);
-
-        binding.MaxReceivedMessageSize = 5000000;
+        //binding.MaxReceivedMessageSize = 5000000;
 
         ChannelFactory<IServerConsoleFacade> factory =
           new ChannelFactory<IServerConsoleFacade>(
-            binding,
+            WcfSettings.GetBinding(),
             new EndpointAddress("net.tcp://" + Address + ":" + Port + "/HiveServerConsole/ServerConsoleFacade"));
 

trunk/sources/HeuristicLab.Hive.Server/3.2/HiveServerApplication.cs

@@ -36 +36 @@
       AutoRestart = true)]
   public class HiveServerApplication : ApplicationBase {
-    private const int DEFAULT_PORT = 9000;
     public const string STR_ClientCommunicator = "ClientCommunicator";
     public const string STR_ServerConsoleFacade = "ServerConsoleFacade";
@@ -43 +42 @@
     private DiscoveryService discService = new DiscoveryService();
     private Dictionary<string, ServiceHost> runningServices = new Dictionary<string, ServiceHost>();
-    private NetTcpBinding binding = new NetTcpBinding(SecurityMode.None, true);
-    //private WSHttpBinding binding = new WSHttpBinding(SecurityMode.TransportWithMessageCredential, true);
+    private NetTcpBinding binding = (NetTcpBinding)WcfSettings.GetBinding();
 
     private enum Services {
@@ -105 +103 @@
       if ((serviceHost != null) && (!String.IsNullOrEmpty(curServiceHost))) {
         AddMexEndpoint(serviceHost);
+        WcfSettings.SetServiceCertificate(serviceHost);
         serviceHost.Open();
         runningServices.Add(curServiceHost, serviceHost);
@@ -146 +145 @@
       Dictionary<string, Uri> baseAddrDict = new Dictionary<string, Uri>();
       baseAddrDict.Add(STR_ClientCommunicator,
-        StartService(Services.ClientCommunicator, addresses[index], DEFAULT_PORT));
+        StartService(Services.ClientCommunicator, addresses[index], WcfSettings.DEFAULTPORT));
       baseAddrDict.Add(STR_ServerConsoleFacade,
-        StartService(Services.ServerConsoleFacade, addresses[index], DEFAULT_PORT));
+        StartService(Services.ServerConsoleFacade, addresses[index], WcfSettings.DEFAULTPORT));
       baseAddrDict.Add(STR_ExecutionEngineFacade,
-        StartService(Services.ExecutionEngineFacade, addresses[index], DEFAULT_PORT));
+        StartService(Services.ExecutionEngineFacade, addresses[index], WcfSettings.DEFAULTPORT));
 
       ILifecycleManager[] lifecycleManagers =  discService.GetInstances<ILifecycleManager>();