Définir les éléments pour sécuriser le dialogue

Créer les certificats

use bd1;
go
create certificate certificatDialogue1
with subject=’CertificatDialogueServiceBroker’, start_date=’01/01/2007′, expiry_ date=’01/01/2009′
active for begin_dialog=on;
go use bd2;
go
create certificate certificatDialogue2
with subject=’CertificatDialogueServiceBroker’, start_date=’01/01/2007′, expiry_ date=’01/01/2009′
active for begin_dialog=on;
go

Sauvegarder les certificats

use bd1;
go
BACKUP CERTIFICATE certificatDialogue1 TO FILE=’c:\ServiceBroker\certificatDialogue1. cer’;
go use bd2;
go
BACKUP CERTIFICATE certificatDialogue2 TO FILE=’c:\ServiceBroker\certificatDialogue2. cer’;
go

Créer les utilisateurs de base de données (sans connexion) et les certificats à partir de la sauvegarde
use bd1;
go
create user UtilisateurDialogueDistant without login;
create certificate certificatDialogue2
authorization UtilisateurDialogueDistant
from file=’c:\ServiceBroker\certificatDialogue2.cer’;

go
use bd2;
go
create user UtilisateurDialogueDistant without login;
create certificate certificatDialogue1
authorization UtilisateurDialogueDistant
from file=’c:\ServiceBroker\certificatDialogue1.cer’;

Accorder la permission de se connecter à l’utilisateur
use bd1;
grant connect to UtilisateurDialogueDistant;
go
use bd2;
grant connect to UtilisateurDialogueDistant;

Accorder la permission d’envoyer un message

use bd1;
grant send on service::service1 to UtilisateurDialogueDistant;
go
use bd2;
grant send on service::service2 to UtilisateurDialogueDistant;

Créer un service distant

use bd1;
go
CREATE REMOTE SERVICE BINDING ServiceDistant2
TO SERVICE ‘service2’
WITH USER = UtilisateurDialogueDistant;
go
use bd2;
go
CREATE REMOTE SERVICE BINDING ServiceDistant1
TO SERVICE ‘service1’
WITH USER = UtilisateurDialogueDistant;
go