在.Net Core中使用HttpClient添加证书
2024-10-20 20:37:15
最近公司要对接电信物联网北向API接口,当调用Auth授权接口时,需要用到证书,此篇文章记录下遇到的坑~
有两种调用接口的方式,下面是两种方式的简单示例
1、使用
HttpClient
public static void Post(string appId, string secret)
{
var handler = new HttpClientHandler
{
ClientCertificateOptions = ClientCertificateOption.Manual,
SslProtocols = SslProtocols.Tls12,
ServerCertificateCustomValidationCallback = (x, y, z, m) => true,
};
var path = Path.Combine(AppContext.BaseDirectory, "cert\\iot3rd.p12");
handler.ClientCertificates.Add(new X509Certificate2(path, "IoM@1234"));
var client = new HttpClient(handler);
var content = new StringContent($"appId={appId}&secret={secret}");
content.Headers.ContentType = new MediaTypeHeaderValue("application/x-www-form-urlencoded");
var httpResponseMessage = client.PostAsync("https://180.101.147.89:8743/iocm/app/sec/v1.1.0/login", content).GetAwaiter().GetResult();
var result = httpResponseMessage.Content.ReadAsStringAsync().GetAwaiter().GetResult();
Console.WriteLine(result);
}
2、使用
HttpWebRequest
public static string Post(string appId, string secret)
{
ServicePointManager.ServerCertificateValidationCallback = (x, y, z, m) => true;
ServicePointManager.SecurityProtocol = (SecurityProtocolType)3072;
HttpWebRequest httpRequest = (HttpWebRequest)HttpWebRequest.Create("https://180.101.147.89:8743/iocm/app/sec/v1.1.0/login");
var p12certfile = Path.Combine(AppContext.BaseDirectory, "cert\\iot3rd.p12");
X509Certificate2 cerCaiShang = new X509Certificate2(p12certfile, "IoM@1234");
httpRequest.ClientCertificates.Add(cerCaiShang);
httpRequest.Method = "POST";
httpRequest.ContentType = "application/x-www-form-urlencoded";
Stream requestStem = httpRequest.GetRequestStream();
StreamWriter sw = new StreamWriter(requestStem);
sw.Write($"appId={appId}&secret={secret}");
sw.Close();
HttpWebResponse httpResponse = (HttpWebResponse)httpRequest.GetResponse();
Stream receiveStream = httpResponse.GetResponseStream();
string result = string.Empty;
using (StreamReader sr = new StreamReader(receiveStream))
{
return sr.ReadToEnd();
}
}
需要注意一点,上面两种方式都需要设置服务器证书验证回调方法,否则回报下面的异常
The remote certificate is invalid according to the validation procedure.
而且两种方式的设置方式不一样,HttpClient
是通过HttpClientHandler
对象的ServerCertificateCustomValidationCallback
属性设置的,而HttpWebRequest
方式是通过ServicePointManager.ServerCertificateValidationCallback
来设置的
最新文章
- 构建ASP.NET MVC4+EF5+EasyUI+Unity2.x注入的后台管理系统(15)-权限管理系统准备
- 数据库日常维护-CheckList_01历史Agent Job执行情况检查
- ELK日志管理之——kibana部署
- 创建MyOffice项目
- 加载cocos studio场景
- poj 2777
- 循序渐进之Spring AOP(5) - 创建切面
- excel vba 当cell的值变化时 进行判断操作
- 【OJ】PAT-A解题报告
- POJ 1733 Parity game(离散化+带权并查集)
- js获取当前url地址及参数
- cf C. Valera and Elections
- Java的一些基础小知识之JVM与GC (转)
- spring AOP 代理机制、执行过程、四种实现方式及示例详解
- 解读Java内部类
- VB6获取Chrome地址栏的URL信息
- CSS(选择器)
- 微信小程序 选择微信自带的地址 用户授权选择了拒绝
- laravel migrate时报错:Syntax error or access violation: 1071 Specified key was too long; max key length is 767 bytes
- python3.4用函数操作mysql5.7数据库