【发布时间】:2016-06-17 07:28:02
【问题描述】:
我可以访问我的令牌并将其添加到 RestSharp RestClient
//Create rest client.
IRestClient client = new RestClient("https://localhost.fiddler:44300");
var webClientCertificate = GetWebClientCertificate();
//Don't ask why... I'm getting an abiguous ref here.
client.ClientCertificates = new System.Security.Cryptography.X509Certificates.X509Certificate2Collection(){webClientCertificate};
IRestRequest request = new RestRequest("api/get-secure-data", Method.GET);
var response = client.Execute(request);
GetWebClientCertificate:
public X509Certificate2 GetWebClientCertificate()
{
//Access certificate store
X509Store certificateStore = new X509Store(StoreName.My, StoreLocation.CurrentUser);
certificateStore.Open(OpenFlags.ReadOnly);
var certificateCollection = certificateStore.Certificates.Find(X509FindType.FindBySubjectName, "web-client",false);
var webClientCertificate = certificateCollection[0];
certificateStore.Close();
return webClientCertificate;
}
我获得了证书,我可以看到它已添加到客户端。
服务器代码
[HttpGet]
[Route("api/get-secure-data")]
[RequireHttps]
public IHttpActionResult GetSecureData()
{
try
{
X509Certificate2 cert = Request.GetClientCertificate(); //returns null
PublicKey clientKey = cert.PublicKey;
return Ok(clientKey);
}
catch (Exception exception)
{
return InternalServerError(exception);
}
}
fiddler 没有显示 auth 标头,我错过了什么?
【问题讨论】:
标签: ssl asp.net-web-api x509certificate restsharp client-certificates