问题
I am currently integrating with a system created by a 3rd party. This system requires me to send a request using XML/HTTPS. The 3rd party send me the certificate and I installed it
I use the following code:
using (WebClient client = new WebClient())
{
client.Headers.Add(HttpRequestHeader.ContentType, "text/xml");
System.Text.ASCIIEncoding encoding=new System.Text.ASCIIEncoding();
var response = client.UploadData(address, "POST", encoding.GetBytes(msg));
}
This code returns the following WebException:
The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.
UPDATE Because it's a test server I am working against, the certificate isn't trusted and validation fails... To bypass this in test/debug environment, create a new ServerCertificateValidationCallback
ServicePointManager.ServerCertificateValidationCallback += new System.Net.Security.RemoteCertificateValidationCallback(bypassAllCertificateStuff);
and here is my "fake" callback
private static bool bypassAllCertificateStuff(object sender, X509Certificate cert, X509Chain chain, System.Net.Security.SslPolicyErrors error)
{
return true;
}
Read more here and here
回答1:
The shortest notation of the code to allow all certificates is actually:
ServicePointManager.ServerCertificateValidationCallback = delegate { return true; };
And works well for this error. Needless to say that you should provide an implementation which actually checks the certificate and decides based on the certificate information if the communication is safe. For test purposes, use the above line of code.
回答2:
For the VB.NET version of the original answer, here you go (converters don't work well when needing to wire up events with the 'AddressOf' operator). 1st code that goes before using a WebClient() or HttpWebRequest() object:
ServicePointManager.ServerCertificateValidationCallback = New System.Net.Security.RemoteCertificateValidationCallback(AddressOf bypassAllCertificateStuff)
..and the wired up method code:
Private Shared Function bypassAllCertificateStuff(ByVal sender As Object, ByVal cert As X509Certificate, ByVal chain As X509Chain, ByVal [error] As System.Net.Security.SslPolicyErrors) As Boolean
Return True
End Function
回答3:
Try this, it works:
class Ejemplo
{
static void Main(string[] args)
{
string _response = null;
string _auth = "Basic";
Uri _uri = new Uri(@"http://api.olr.com/Service.svc");
string addres = @"http://api.olr.com/Service.svc";
string proxy = @"http://xx.xx.xx.xx:xxxx";
string user = @"platinum";
string pass = @"01CFE4BF-11BA";
NetworkCredential net = new NetworkCredential(user, pass);
CredentialCache _cc = new CredentialCache();
WebCustom page = new WebCustom(addres, proxy);
page.connectProxy();
_cc.Add(_uri, _auth, net);
page.myWebClient.Credentials = _cc;
Console.WriteLine(page.copyWeb());
}
}
public class WebCustom
{
private string proxy;
private string url;
public WebClient myWebClient;
public WebProxy proxyObj;
public string webPageData;
public WebCustom(string _url, string _proxy)
{
url = _url;
proxy = _proxy;
myWebClient = new WebClient();
}
public void connectProxy()
{
proxyObj = new WebProxy(proxy, true);
proxyObj.Credentials = CredentialCache.DefaultCredentials;
myWebClient.Proxy = proxyObj;
}
public string copyWeb()
{ return webPageData = myWebClient.DownloadString(url); }
}
来源:https://stackoverflow.com/questions/536352/webclient-https-issues