如何將證書添加到WebClient（C＃）？

Question

我知道這是很簡單的一個證書添加到HttpWebRequest的。但是，我還沒有找到使用WebClient進行等效的方法。基本上，我想使用WebClient發送帶有特定證書的POST。

你會如何使用Web客戶端完成這個確切的代碼：

var request = (HttpWebRequest) WebRequest.Create("my-url"); 
    request.Method = "POST"; 
    request.ClientCertificates.Add(new X509Certificate()); //add cert 

Answer 1

您必須繼承並覆蓋一個或多個函數。當被安裝在我們的前端，一個新的證書

class MyWebClient : WebClient 
{ 
    protected override WebRequest GetWebRequest(Uri address) 
    { 
     HttpWebRequest request = (HttpWebRequest)base.GetWebRequest(address); 
     request.ClientCertificates.Add(new X509Certificate()); 
     return request; 
    } 
} 

Answer 2

只要繼承WebClient，添加自己ClientCertificates財產和重寫WebClient.GetWebRequest(System.Uri)方法。我沒有時間將它從VB轉換爲C＃，但它應該是不言而喻的：

Imports System.Net 

Public Class WebClient2 
    Inherits System.Net.WebClient 

    Private _ClientCertificates As New System.Security.Cryptography.X509Certificates.X509CertificateCollection 
    Public ReadOnly Property ClientCertificates() As System.Security.Cryptography.X509Certificates.X509CertificateCollection 
     Get 
      Return Me._ClientCertificates 
     End Get 
    End Property 
    Protected Overrides Function GetWebRequest(ByVal address As System.Uri) As System.Net.WebRequest 
     Dim R = MyBase.GetWebRequest(address) 
     If TypeOf R Is HttpWebRequest Then 
      Dim WR = DirectCast(R, HttpWebRequest) 
      If Me._ClientCertificates IsNot Nothing AndAlso Me._ClientCertificates.Count > 0 Then 
       WR.ClientCertificates.AddRange(Me._ClientCertificates) 
      End If 
     End If 
     Return R 
    End Function 
End Class 

Answer 3

一個有趣的事情發生了。我們開始收到錯誤：

「底層連接已關閉：無法建立SSL/TLS安全通道的信任關係;底層連接已關閉：無法建立SSL/TLS安全通道的信任關係。 ;」

我們通過將每個前端和打開瀏覽器照顧錯誤的。似乎IE正在緩存舊證書。通過打開瀏覽器，新證書生效。問題解決了！

Answer 4

public class CertificateWebClient : WebClient 
{ 
    private readonly X509Certificate2 certificate; 

    public CertificateWebClient(X509Certificate2 cert) 
    { 
     certificate = cert; 
    } 

    protected override WebRequest GetWebRequest(Uri address) 
    { 
     HttpWebRequest request = (HttpWebRequest)base.GetWebRequest(address); 

     System.Net.ServicePointManager.ServerCertificateValidationCallback = delegate(Object obj, X509Certificate X509certificate, X509Chain chain, System.Net.Security.SslPolicyErrors errors) 
     { 
      return true; 
     }; 

     request.ClientCertificates.Add(certificate); 
     return request; 
    } 
} 

現在你可以用自簽名證書！ （「底層連接已關閉：無法建立SSL/TLS安全通道的信任關係;底層連接已關閉：無法建立SSL/TLS安全通道的信任關係;」）

 X509Certificate2 Cert = new X509Certificate2("client.p12", "1234", X509KeyStorageFlags.MachineKeySet); 

     // Create a new WebClient instance. 
     CertificateWebClient myWebClient = new CertificateWebClient(Cert); 

     string fileName = Installation.destXML; 
     string uriString = "https://xxxxxxx.xx:918"; 
     // Upload the file to the URI. 
     // The 'UploadFile(uriString,fileName)' method implicitly uses HTTP POST method. 
     byte[] responseArray = myWebClient.UploadFile(uriString, fileName); 

     // Decode and display the response. 
     Console.WriteLine("\nResponse Received.The contents of the file uploaded are:\n{0}", 
      System.Text.Encoding.ASCII.GetString(responseArray));