HttpWebRequest and client certs?

Erin,

Sure.

System.Security.Cryptography.X509Certificates.X509 Certificate cert =

System.Security.Cryptography.X509Certificates.X509 Certificate.CreateFromCert
File(@certPath);
ServicePointManager.CertificatePolicy = new CertPolicy();
HttpWebRequest tuReq = (HttpWebRequest)WebRequest.Create(addr + "?" + TU);
tuReq.ClientCertificates.Add(cert);

tuReq.ContentType = "application/x-www-form-urlencoded";

tuReq.Method = "GET";

Make sure you have a class (either your class or another) that implements
ICertificatePolicy or your app will hang because of the untrusted cert
issue.

EX:

class CertPolicy: ICertificatePolicy

{

public bool CheckValidationResult(ServicePoint srvPoint, X509Certificate
certificate,

WebRequest request, int certificateProblem)

{

return true;

}

}

Alex



"EMonaco" <er********@nospam.net> wrote in message
news:Oo**************@tk2msftngp13.phx.gbl...

Is there any way to programmatically select a particular client certificate and associate it with an HttpWebRequest instance? I know using WinINet this was possible.
Erin.

Trebek,

Thanks, was able to dig up an ASP.NET example code and came up with

httpreq = (HttpWebRequest) HttpWebRequest.Create(this.tbURL.Text);

httpreq.Method = sMethod;
// Has a client certificate file been given?

if(this.tbCERTPATH.Text.Length>0)

{

try

{

httpreq.ClientCertificates.Add(System.Security.Cry ptography.X509Certificates
..X509Certificate.CreateFromCertFile(this.tbCERTPA TH.Text));

}

catch(System.Exception pe)

{

System.Diagnostics.Debug.WriteLine(pe.ToString());

}

}

I assume I need an implemented ICertificatePolicy if the server certificate
is not trusted on the given client?

Erin.

"Trebek" <tr****@intheformofaquestion.com> wrote in message
news:3f***********************@nnrp.fuse.net...

Erin,

Sure.

System.Security.Cryptography.X509Certificates.X509 Certificate cert =

System.Security.Cryptography.X509Certificates.X509 Certificate.CreateFromCert File(@certPath);
ServicePointManager.CertificatePolicy = new CertPolicy();
HttpWebRequest tuReq = (HttpWebRequest)WebRequest.Create(addr + "?" + TU);
tuReq.ClientCertificates.Add(cert);

tuReq.ContentType = "application/x-www-form-urlencoded";

tuReq.Method = "GET";

Make sure you have a class (either your class or another) that implements
ICertificatePolicy or your app will hang because of the untrusted cert
issue.

EX:

class CertPolicy: ICertificatePolicy

{

public bool CheckValidationResult(ServicePoint srvPoint, X509Certificate
certificate,

WebRequest request, int certificateProblem)

{

return true;

}

}

Alex



"EMonaco" <er********@nospam.net> wrote in message
news:Oo**************@tk2msftngp13.phx.gbl...

Is there any way to programmatically select a particular client

certificate

and associate it with an HttpWebRequest instance? I know using WinINet

this

was possible.
Erin.

Yes, even if the client IS trusted, I suggest doing it because the in the
early releases (Beta and maybe 1.0 - can't remember), this was buggy and
never really worked as intended.

Alex

"EMonaco" <er********@nospam.net> wrote in message
news:%2***************@TK2MSFTNGP10.phx.gbl...

Trebek,

Thanks, was able to dig up an ASP.NET example code and came up with

httpreq = (HttpWebRequest) HttpWebRequest.Create(this.tbURL.Text);

httpreq.Method = sMethod;
// Has a client certificate file been given?

if(this.tbCERTPATH.Text.Length>0)

{

try

{

httpreq.ClientCertificates.Add(System.Security.Cry ptography.X509Certificates .X509Certificate.CreateFromCertFile(this.tbCERTPAT H.Text));

}

catch(System.Exception pe)

{

System.Diagnostics.Debug.WriteLine(pe.ToString());

}

}

I assume I need an implemented ICertificatePolicy if the server certificate is not trusted on the given client?

Erin.

"Trebek" <tr****@intheformofaquestion.com> wrote in message
news:3f***********************@nnrp.fuse.net...

Erin,

Sure.

System.Security.Cryptography.X509Certificates.X509 Certificate cert =

System.Security.Cryptography.X509Certificates.X509 Certificate.CreateFromCert

File(@certPath);
ServicePointManager.CertificatePolicy = new CertPolicy();
HttpWebRequest tuReq = (HttpWebRequest)WebRequest.Create(addr + "?" + TU);

tuReq.ClientCertificates.Add(cert);

tuReq.ContentType = "application/x-www-form-urlencoded";

tuReq.Method = "GET";

Make sure you have a class (either your class or another) that implements ICertificatePolicy or your app will hang because of the untrusted cert
issue.

EX:

class CertPolicy: ICertificatePolicy

{

public bool CheckValidationResult(ServicePoint srvPoint, X509Certificate
certificate,

WebRequest request, int certificateProblem)

{

return true;

}

}

Alex



"EMonaco" <er********@nospam.net> wrote in message
news:Oo**************@tk2msftngp13.phx.gbl...

Is there any way to programmatically select a particular client

certificate

and associate it with an HttpWebRequest instance? I know using WinINet

this

was possible.
Erin.