Securing a dynamic SoapHeader

As described in the Adding a dynamic SoapHeader into a message recipe in Chapter 5, WCF supports dynamically adding SoapHeaders into request/response messages without defining them statically in ServiceContract or OperationContract. This works fine for those scenarios where the dynamic SoapHeader doesn't need to be secured (either signing or encrypting), since the programmatically-injected SoapHeader is transferred as unsecured in the <headers> section of a SOAP envelope. Then, how do we secure the dynamically added SoapHeader?

In this recipe, we will demonstrate how to secure a SoapHeader that is added into the WCF request message, programmatically.

How to do it...

To secure a dynamically added SoapHeader, we need ...

Get Microsoft Windows Communication Foundation 4.0 Cookbook for Developing SOA Applications now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Microsoft Windows Communication Foundation 4.0 Cookbook for Developing SOA Applications by Steven Cheng

Securing a dynamic SoapHeader

How to do it...

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly