book

Programming WCF Services, 2nd Edition

Name: Programming WCF Services, 2nd Edition
Author: Juval Lowy
ISBN: 9780596521301

by Juval Lowy

November 2008

Intermediate to advanced

784 pages

23h 28m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Programming WCF Services, Second Edition
Dedication
A Note Regarding Supplemental Files
Forewords
Preface
How This Book Is Organized
Some Assumptions About the Reader
What You Need to Use This Book
Conventions Used in This Book
Using Code Examples

How to Contact Us
Safari® Books Online
Acknowledgments
1. WCF Essentials
What Is WCF?
Services
Service Execution BoundariesWCF and location transparency
Addresses
TCP AddressesHTTP AddressesIPC AddressesMSMQ AddressesPeer Network Addresses
Contracts
The Service ContractApplying the ServiceContract attributeNames and namespaces
Hosting
IIS 5/6 HostingUsing Visual Studio 2008The Web.Config fileSelf-HostingUsing Visual Studio 2008Self-hosting and base addressesAdvanced hosting featuresThe ServiceHost<T> classWAS HostingCustom Hosting in IIS/WAS
Bindings
The Common BindingsFormat and encodingChoosing a BindingAdditional BindingsUsing a Binding
Endpoints
Administrative Endpoint ConfigurationUsing base addressesBinding configurationProgrammatic Endpoint ConfigurationBinding configuration
Metadata Exchange
Enabling Metadata Exchange AdministrativelyEnabling Metadata Exchange ProgrammaticallyThe Metadata Exchange EndpointAdding MEX endpoints programmaticallyStreamlining with ServiceHost<T>The Metadata Explorer
Client-Side Programming
Generating the ProxyGenerating the proxy using SvcUtilAdministrative Client ConfigurationBinding configurationGenerating the client config fileIn-proc configurationThe SvcConfigEditorWorking with the proxyClosing the proxyCall timeoutProgrammatic Client ConfigurationThe WCF-Provided Test Client
Programmatic Versus Administrative Configuration
WCF Architecture
Host Architecture
Working with Channels
The InProcFactory ClassImplementing InProcFactory<T>
Transport-Level Sessions
Transport Session and BindingTransport Session Termination
Reliability
Bindings, Reliability, and Ordered MessagesConfiguring ReliabilityRequiring Ordered Delivery
2. Service Contracts
Operation Overloading
Contract Inheritance
Client-Side Contract HierarchyRestoring the hierarchy on the client
Service Contract Factoring and Design
Contract FactoringFactoring Metrics
Contract Queries
Programmatic Metadata ProcessingThe MetadataResolver classThe MetadataHelper Class
3. Data Contracts
Serialization
.NET SerializationThe Serializable attributeThe NonSerialized attributeThe .NET formattersThe WCF FormattersData Contract via Serialization
Data Contract Attributes
Importing a Data ContractData Contracts and the Serializable AttributeInferred Data ContractsComposite Data ContractsData Contract EventsUsing the deserializing eventUsing the deserialized eventShared Data Contracts
Data Contract Hierarchy
Known TypesService Known TypesMultiple Known TypesConfiguring Known TypesObjects and Interfaces
Data Contract Equivalence
Serialization Order
Versioning
New MembersMissing MembersUsing the OnDeserializing eventRequired membersVersioning Round-TripSchema compatibility
Enumerations
Delegates and Data Contracts
Data Sets and Tables
Using Arrays Instead of TablesConverting legacy data tablesConverting new data tablesUsing LINQ to SQL
Generics
Collections
Concrete CollectionsCustom CollectionsThe CollectionDataContract AttributeReferencing a CollectionDictionaries
4. Instance Management
Behaviors
Per-Call Services
Benefits of Per-Call ServicesConfiguring Per-Call ServicesPer-Call Services and Transport SessionsDesigning Per-Call ServicesPer-call services and performanceCleanup operationsChoosing Per-Call Services
Per-Session Services
Configuring Private SessionsSessionMode.AllowedSessionMode.RequiredSessionMode.NotAllowedBindings, contracts, and service behaviorConsistent configurationSessions and ReliabilityThe Session IDSession Termination
Singleton Service
Initializing a SingletonStreamlining with ServiceHost<T>Choosing a Singleton
Demarcating Operations
Instance Deactivation
Configuring with ReleaseInstanceMode.NoneConfiguring with ReleaseInstanceMode.BeforeCallConfiguring with ReleaseInstanceMode.AfterCallConfiguring with ReleaseInstanceMode.BeforeAndAfterCallExplicit DeactivationUsing Instance Deactivation
Durable Services
Durable Services and Instance Management ModesInitiating and terminatingInstance IDs and Durable StorageExplicit Instance IDsInstance IDs in HeadersContext Bindings for Instance IDsUsing the standard ID for context bindingAutomatic Durable BehaviorThe durable service behavior attributeThe durable operation behavior attributeProgrammatic instance managementPersistence providersCustom persistence providersThe SQL Server persistence provider
Throttling
Configuring ThrottlingAdministrative throttlingProgrammatic throttlingStreamlining with ServiceHost<T>Reading throttle valuesThrottled Connections in the Binding
5. Operations
Request-Reply Operations
One-Way Operations
Configuring One-Way OperationsOne-Way Operations and ReliabilityOne-Way Operations and Sessionful ServicesOne-Way Operations and Exceptions
Callback Operations
The Callback ContractClient Callback SetupDuplex proxiesService-Side Callback InvocationCallback reentrancyCallback Connection ManagementConnection management and instance modeThe Duplex Proxy and Type SafetyThe Duplex FactoryCallback Contract HierarchyCallbacks, Ports, and ChannelsAssigning a callback addressAssigning the callback address declaratively
Events
Streaming
I/O StreamsStreaming and BindingStreaming and TransportStream Management
6. Faults
Error Isolation and Decoupling
Error MaskingChannel FaultingClosing the proxy and the using statementExceptions and instance management
Fault Propagation
Fault ContractsFault handlingFaults and channelsFault DebuggingIncluding exceptions declarativelyHost and exception diagnosticsException extractionFaults and CallbacksCallback debugging
Error-Handling Extensions
Providing a FaultUsing ProvideFault( )Exception promotionHandling a FaultThe logbook serviceInstalling Error-Handling ExtensionsThe ErrorHandlerBehavior attributeThe Host and Error ExtensionsCallbacks and Error ExtensionsThe CallbackErrorHandlerBehavior attribute
7. Transactions
The Recovery Challenge
Transactions
Transactional ResourcesTransaction PropertiesThe atomic propertyThe consistent propertyThe isolated propertyThe durable propertyTransaction ManagementThe transaction management challengeDistributed transactionsThe two-phase commit protocolWCF Resource Managers
Transaction Propagation
Transaction Flow and BindingsTransaction Flow and the Operation ContractTransactionFlowOption.NotAllowedTransactionFlowOption.AllowedTransactionFlowOption.MandatoryOne-Way Calls
Transaction Protocols and Managers
Protocols and BindingsTransaction ManagersThe LTMThe KTMThe DTCTransaction Manager PromotionLTM promotionKTM promotionResources and promotion
The Transaction Class
The Ambient TransactionLocal Versus Distributed TransactionsThe local transaction identifierThe distributed transaction identifier
Transactional Service Programming
Setting the Ambient TransactionTransaction Propagation ModesClient/Service transaction modeRequiring transaction flowClient transaction modeService transaction modeNone transaction modeChoosing a service transaction modeVoting and CompletionDeclarative votingExplicit votingTerminating a transactionTransaction IsolationIsolation and transaction flowTransaction TimeoutTransaction flow and timeout
Explicit Transaction Programming
The TransactionScope ClassTransactionScope votingTransaction Flow ManagementVoting inside a nested scopeTransactionScopeOption.RequiredTransactionScopeOption.RequiresNewTransactionScopeOption.SuppressTransactionScope timeoutTransactionScope isolation levelNon-Service Clients
Service State Management
The Transaction Boundary
Instance Management and Transactions
Per-Call Transactional ServicesThe transaction lifecyclePer-Session Transactional ServicesReleasing the service instanceDisabling releasing the service instanceState-aware per-session servicesStateful per-session servicesTransaction lifecycleConcurrent transactionsCompleting on session endTransactional affinityHybrid state managementTransactional Durable ServicesInstance ID managementTransactional BehaviorIn-proc transactionsTransactional Singleton ServiceStateful singleton serviceInstancing Modes and Transactions
Callbacks
Callback Transaction ModesIsolation and timeoutsCallback VotingUsing Transactional CallbacksOut-of-band transactional callbacksService transactional callbacks
8. Concurrency Management
Instance Management and Concurrency
Service Concurrency Modes
ConcurrencyMode.SingleSynchronized access and transactionsConcurrencyMode.MultipleUnsynchronized access and transactionsConcurrencyMode.ReentrantDesigning for reentrancyReentrancy and transactionsCallbacks and reentrancy
Instances and Concurrent Access
Per-Call ServicesSessionful and Singleton Services
Resources and Services
Deadlocked AccessDeadlock Avoidance
Resource Synchronization Context
.NET Synchronization ContextsThe SynchronizationContext classWorking with the synchronization contextThe UI Synchronization ContextUI access and updatesSafe controls
Service Synchronization Context
Hosting on the UI ThreadAccessing the formMultiple UI threadsA Form As a ServiceThe FormHost<F> classThe UI Thread and Concurrency ManagementUI responsivenessThe UI thread and concurrency modes
Custom Service Synchronization Contexts
The Thread Pool SynchronizerDeclaratively attaching a custom synchronization contextThread AffinityThe host-installed synchronization contextPriority Processing
Callbacks and Client Safety
Callbacks with ConcurrencyMode.SingleCallbacks with ConcurrencyMode.MultipleCallbacks with ConcurrencyMode.Reentrant
Callbacks and Synchronization Contexts
Callbacks and the UI Synchronization ContextUI thread callbacks and responsivenessUI thread callbacks and concurrency managementCallback Custom Synchronization ContextsCallback thread affinity
Asynchronous Calls
Requirements for an Asynchronous MechanismProxy-Based Asynchronous CallsAsynchronous InvocationThe IAsyncResult interfaceAsynchronous calls and transport sessionsPolling or Waiting for CompletionCompletion CallbacksCompletion callbacks and thread safetyPassing state informationCompletion callback synchronization contextOne-Way Asynchronous OperationsAsynchronous Error HandlingAsynchronous calls and timeoutsCleaning up after End<Operation>( )Asynchronous Calls and TransactionsSynchronous Versus Asynchronous Calls
9. Queued Services
Disconnected Services and Clients
Queued Calls
Queued Calls ArchitectureQueued ContractsConfiguration and SetupWorkgroup installation and securityCreating the queueQueue purgingQueues, services, and endpointsExposing metadataWAS hosting
Transactions
Delivery and PlaybackThe delivery transactionThe playback transactionService Transaction ConfigurationParticipating in the playback transactionIgnoring the playback transactionUsing a separate transactionNontransactional Queues
Instance Management
Per-Call Queued ServicesNontransactional clientsTransactional clientsPer-call processingSessionful Queued ServicesClients and transactionsServices and transactionsSingleton ServiceCalls and order
Concurrency Management
Throttling
Delivery Failures
The Dead-Letter QueueTime to LiveConfiguring the Dead-Letter QueueCustom DLQ verificationProcessing the Dead-Letter QueueDefining the DLQ serviceFailure propertiesImplementing a DLQ service
Playback Failures
Poison MessagesPoison Message Handling in MSMQ 4.0Retry batchesReceiveErrorHandling.FaultReceiveErrorHandling.DropReceiveErrorHandling.RejectReceiveErrorHandling.MoveConfiguration samplePoison message servicePoison Message Handling in MSMQ 3.0
Queued Versus Connected Calls
Requiring Queuing
The Response Service
Designing a Response Service ContractResponse address and method IDThe ResponseContext classClient-Side ProgrammingUsing ResponseClientBase<T>Queued Service-Side ProgrammingResponse Service-Side ProgrammingTransactionsUsing a new transactionResponse service and transactions
The HTTP Bridge
Designing the BridgeTransaction ConfigurationService-Side ConfigurationClient-Side Configuration
10. Security
Authentication
Authorization
Transfer Security
Transfer Security ModesNone transfer security modeTransport transfer security modeMessage transfer security modeMixed transfer security modeBoth transfer security modeTransfer Security Mode ConfigurationSpecific binding configurationsTransport Security and CredentialsMessage Security and Credentials
Identity Management
Overall Policy
Scenario-Driven Approach
Intranet Application Scenario
Securing the Intranet BindingsTransport security protection levelNetTcpBinding configurationNetNamedPipeBinding configurationNetMsmqBinding configurationConstraining Message ProtectionAuthenticationProviding alternative Windows credentialsIdentitiesThe IIdentity interfaceWorking with WindowsIdentityThe Security Call ContextImpersonationManual impersonationDeclarative impersonationImpersonating all operationsRestricting impersonationAvoiding impersonationAuthorizationThe security principalSelecting an authorization modeDeclarative role-based securityProgrammatic role-based securityIdentity ManagementCallbacks
Internet Application Scenario
Securing the Internet BindingsWSHttpBinding configurationWSDualHttpBinding configurationMessage ProtectionConfiguring the host certificateUsing the host certificateService certificate validationWorking with a test certificateAuthenticationUsing Windows CredentialsAuthorizationIdentity managementUsing the ASP.NET ProvidersThe credentials providersCredentials administrationShortcomings of Visual Studio 2008Credentials ManagerAuthenticationAuthorizationDeclarative role-based securityIdentity ManagementImpersonationCallbacks
Business-to-Business Application Scenario
Securing the Business-to-Business BindingsAuthenticationAuthorizationIdentity ManagementImpersonationCallbacksHost Security Configuration
Anonymous Application Scenario
Securing the Anonymous BindingsAuthenticationAuthorizationIdentity ManagementImpersonationCallbacks
No Security Scenario
Unsecuring the BindingsAuthenticationAuthorizationIdentity ManagementImpersonationCallbacks
Scenarios Summary
Declarative Security Framework
The SecurityBehaviorAttributeConfiguring an intranet serviceConfiguring an Internet serviceConfiguring a business-to-business serviceConfiguring an anonymous serviceConfiguring a no-security serviceImplementing the SecurityBehavior attributeHost-Side Declarative SecurityClient-Side Declarative SecurityImplementing SecurityHelperThe SecureClientBase<T> classSecure channel factoryDuplex clients and declarative securityExtensions for the duplex factory
Security Auditing
Configuring Security AuditsDeclarative Security Auditing
A. Introduction to Service-Orientation
A Brief History of Software Engineering
Object-OrientationComponent-OrientationOff-the-shelf plumbing
Service-Orientation
Benefits of Service-OrientationService-Oriented Applications
Tenets and Principles
Practical PrinciplesOptional Principles
What's Next?
A Service-Oriented PlatformEvery class as a service
B. Headers and Contexts
Message Headers
Client-Side Header InteractionService-Side Header InteractionEncapsulating the HeadersThe GenericContext<T> helper classStreamlining the ClientThe HeaderClientBase<T,H> proxy class
Context Bindings
Client-Side Context Binding InteractionService-Side Context Binding InteractionStreamlining the ClientStreamlining the ServiceCreating a Custom Context BindingImplementing NetNamedPipeContextBinding
C. Publish-Subscribe Service
The Publish-Subscribe Design Pattern
Subscriber Types
The Publish-Subscribe Framework
Managing Transient SubscriptionsManaging Persistent SubscribersEvent PublishingAdministering Persistent SubscribersSingleton subscriberQueued Publishers and SubscribersQueued publisherQueued subscriber
D. Code-Access Security
Code-Access Support in .NET 3.5
Partially Trusted Clients
Client-Side DemandsSuppressing demands with PartialTrustClientBase<T>Raw WCF demands with PartialTrustClientBase<T>Structured demands with PartialTrustClientBase<T>Analyzing the demands of PartialTrustClientBase<T>.Invoke( )Implementing client-side structured demands
Partially Trusted Services
AppDomainHostImplementing AppDomainHost
Partially Trusted Hosts
Structured Host-Side Security DemandsImplementing structured host demandsAdditional aspects of AppDomainHost
E. Generic Interceptor
Intercepting Service Operations
The Generic InvokerInstalling the Interceptor
Intercepting Client Calls
The Trace Interceptors
Identity Stack Propagation
Security Call Stack Interceptor
F. WCF Coding Standard
General Design Guidelines
Essentials
Service Contracts
Data Contracts
Instance Management
Operations and Calls
Faults
Transactions
Concurrency Management
Queued Services
Security
G. ServiceModelEx Catalog
CollectionExtensions
ArrayExtensions
AppDomainHost
InProcFactory
ServiceHost<T>
MetadataHelper
DataContractSerializer<T>
DataTableHelper
ServiceThrottleHelper
IInstanceStore<ID,T>
FileInstanceStore<ID,T>, FilePersistenceProvider, FilePersistenceProviderFactory
MemoryProvider, MemoryProviderFactory
TransactionalMemoryStore<ID,T>, TransactionalMemoryProvider, TransactionalMemoryProviderFactory
TransactionalInstanceStore<ID,T>, TransactionalInstanceProvider, TransactionalInstanceProviderFactory
InstanceContext<T>, DuplexClientBase<T,C>, DuplexChannelFactory<T,C>
WsDualProxyHelperCallbackBaseAddressBehaviorAttribute
DebugHelper
ErrorHandlerHelper
ErrorHandlerBehaviorAttribute, CallbackErrorHandlerBehaviorAttribute
ILogbookManager, LogbookManagerClient, LogbookManager
BindingRequirementAttribute
ResourceManager, TransactionalLock
Transactional<T>
TransactionalCollection<C,T>
TransactionalArray<T>, TransactionalDictionary<K,T>, TransactionalLinkedList<T>, TransactionalList<T>, TransactionalQueue<T>, TransactionalSortedDictionary<K,T>, TransactionalSortedList<K,T>, TransactionalStack<T>
TransactionalBehaviorAttribute
FormHost<F>
SafeButton, SafeLabel, SafeListBox, SafeProgressBar, SafeStatusBar, SafeTextBox, SafeTrackBar
ThreadPoolSynchronizer, ThreadPoolBehaviorAttribute, CallbackThreadPoolBehaviorAttribute, ThreadPoolHelper
AffinitySynchronizer, ThreadAffinityBehaviorAttribute, CallbackThreadAffinityBehaviorAttribute, HostThreadAffinity
PrioritySynchronizer, PriorityClientBase<T>, PriorityContext, PriorityCallsBehaviorAttribute
QueuedServiceHelper
ResponseClientBase<T>, ResponseScope<T>, ResponseContext
CredentialsManager, AspNetSqlProviderService
SecureClientBase<T>, SecureDuplexClientBase<T,C>, SecurityBehaviorAttribute, SecurityHelper, ServiceSecurity
HeaderClientBase<T,H>, GenericContext<T>
ContextClientBase<T>, ContextManager
NetNamedPipeContextBinding, NetNamedPipeContextBindingElement, NetNamedPipeContextBindingCollectionElement
PersistentSubscriptionServiceClient, IPersistentSubscriptionService, ISubscriptionService, PersistentSubscription, PublishService<T>, SubscriptionManager<T>, PersistentSubscriptionManager
PartialTrustClientBase<T>, PartialTrustDuplexClientBase<T,C>, CodeAccessSecurityHelper
GenericInvoker, OperationInterceptorBehaviorAttribute, ServiceInterceptorBehaviorAttribute
InterceptorClientBase<T>
SecurityCallFrame, SecurityCallStack, SecurityCallStackContext, SecurityCallStackClientBase<T>, SecurityCallStackInterceptor, OperationSecurityCallStackAttribute, SecurityCallStackBehaviorAttribute
Index
About the Author
Colophon
Copyright

Content preview from Programming WCF Services, 2nd Edition

Identity Stack Propagation

The second example of using the generic interceptor is about security identity propagation. As explained in Chapter 10, impersonation as a mechanism for identity propagation has many liabilities. Still, sometimes your service is required to pass the identity of the original caller (or all callers) down to the resources or other services with which it interacts. Instead of impersonating the callers or passing their identities as explicit parameters, you can pass the identities out-of-band, in the message headers, and use the generic interceptor to automate processing of those identities.

The first step is to define the stack of callers. To that end, I defined the SecurityCallFrame, which represents a single caller identity as well as some additional information about the caller, such as its address and the operation it invoked:

[DataContract]
public class SecurityCallFrame
{
   [DataMember(IsRequired = true)]
   public string Authentication
   {get;}

   [DataMember(IsRequired = true)]
   public string IdentityName
   {get;}

   [DataMember(IsRequired = true)]
   public string Address
   {get;}

   [DataMember(IsRequired = true)]
   public string Operation
   {get;}

   //More members
}

Next, I defined the security call stack:

[DataContract]
public class SecurityCallStack
{
   internal void AppendCall(  );

   public SecurityCallFrame OriginalCall
   {get;}

   public int Count
   {get;}

   public SecurityCallFrame[] Calls
   {get;}

   //More members
}

The implementation details of these types are irrelevant for this appendix. ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9780596157210Errata

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Programming WCF Services, 2nd Edition

by Juval Lowy

Identity Stack Propagation

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

More than 5,000 organizations count on O’Reilly

Julian F.

Addison B.

Amir M.

Mark W.

You might also like

Programming WCF Services

Programming WCF Services, 3rd Edition

Pro WCF: Practical Microsoft SOA Implementation

Pro WCF 4: Practical Microsoft SOA Implementation, Second Edition

Publisher Resources