Using WCF to send a signed Request and receive an unsigned Response

Question

I'm working with a .NET dev team who are trying to interface with a web service that uses WS-Security, and although the service requires signed requests it only returns unsigned responses.

The team knows of a way to call the service using WSE, but they're required to use WCF, so can anyone suggest how to configure WCF to send signed requests and receive unsigned responses?

TIA

Answer 1

Hey I'm looking for the same thing. In addition, I'm also looking for where the sender sends a sign message but the response is encrypted only. I hope you get a response.

Answer 2

This would be handy to know! I either need to sign the reponse from spring or accept unsigned reposnses in WCF using mutualcertificate

Answer 3

Have a look at Microsoft Hotfix KB971493: A hotfix that enables WCF to send secured messages and to receive unsecured responses, and to send unsecured messages and to receive secured responses, is available for the .NET Framework 3.5 SP1.

Windows Communication Foundation (WCF) does not have the functionality to send secured messages and then receive unsecured responses, or to send unsecured messages and receive secured responses. The hotfix that is described in this article adds a new enableUnsecuredResponse attribute.