Home/ Questions/Q 593353
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-13T15:50:13+00:00

We would like to keep the WCF in the configuration file. At the same

  • 0

We would like to keep the WCF in the configuration file.

At the same time we would like the code to refuse a request if the data will be sent over the net unencrypted. Something like: if the request is basichttpbinding without https, throw exception.

Is there any way for the service code to know how it is being called?

EDIT

From the comments it looks like the question was not that clear.

What I am trying to do is “fix” the following situtaion: We install a service with basichttpBinding and https. Then a administrator changes it to not use https. The effect is that data is sent unencrypted over the net.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Are you self-hosting?? The most simplistic approach would be:

    ServiceHost serviceHost = new ServiceHost(typeof(Service1), "http://localhost:1234/MyService/xml");

foreach (ServiceEndpoint sep in serviceHost.Description.Endpoints)
{
    if(sep.Binding.Scheme != "https")
    {
       // either just remove that endpoint, or signal an error
    }
}

    Of course, when you host in IIS, this gets a bit trickier… you might have to create your own custom ServiceHost descendant to do this check, and make sure your IIS based *.svc files use that custom host. Of course, a smart admin might be able to trick that by using the base ServiceHost instead of your own custom host class……

    • 0