科技改变生活-雨落星辰 - 所有的伟大,都源于一个勇敢的开始

    最新消息:雨落星辰是一个专注网站SEO优化、网站SEO诊断、搜索引擎研究、网络营销推广、网站策划运营及站长类的自媒体原创博客
    你的位置: 首页>programmer>graphql - .NET GraphQLHttpClient with untrusted ssl cert - Stack Overflow

    graphql - .NET GraphQLHttpClient with untrusted ssl cert - Stack Overflow

    programmeradmin1浏览0评论

    I am attempting to subscribe to a graphql server over ssl on an untrusted cert. My javascript is doing this successfully as long as I've previously trusted the cert in the browser. However, When using this code in .Net Core

    var subscriptionStream = graphQLClient.CreateSubscriptionStream<CustomObject>(graphqlRequest,
    (Action<WebSocketException>)(response => {
        Console.WriteLine(response);
    }));

    The exception clearly states this is due to the ssl cert not being trusted. I need to find a way for C# to allow the untrusted cert.

    I have tried the following:

    var handler = new HttpClientHandler();
handler.ClientCertificateOptions = ClientCertificateOption.Manual;
handler.ServerCertificateCustomValidationCallback =
    (httpRequestMessage, cert, cetChain, policyErrors) =>
    {
        return true;
    };
var graphQLClient = new GraphQLHttpClient(url, new NewtonsoftJsonSerializer(), new HttpClient(handler));
var subscriptionStream = graphQLClient.CreateSubscriptionStream<CustomObject>(graphqlRequest,
    (Action<WebSocketException>)(response => {
        Console.WriteLine(response);
    }));
var subscription = subscriptionStream.Subscribe((Action<GraphQLResponse<CustomObject>>)(response =>
{
    ...
}));

    I have also tried

    var graphQLClient = new GraphQLHttpClient(o => {
    o.WebSocketEndPoint = new Uri(url);
    o.UseWebSocketForQueriesAndMutations = false;
}, new NewtonsoftJsonSerializer());
ServicePointManager.ServerCertificateValidationCallback += (sender, cert, chain, sslPolicyErrors) => true;
var subscriptionStream = graphQLClient.CreateSubscriptionStream<CustomObject>(graphqlRequest,
    (Action<WebSocketException>)(response => {
        Console.WriteLine(response);
    }));
var subscription = subscriptionStream.Subscribe((Action<GraphQLResponse<CustomObject>>)(response =>
{
    ...
}));

    Both cases result in the untrusted cert exception being thrown. I have also tried installing the self-signed ca cert and the self-signed cert on the windows machine running this code.

    Any Ideas? Buying a ca trusted cert is not an acceptable answer. I'll reiterate that I can connect over ssl to the same server with javascript, so it's nothing server side.

    I am attempting to subscribe to a graphql server over ssl on an untrusted cert. My javascript is doing this successfully as long as I've previously trusted the cert in the browser. However, When using this code in .Net Core

    var subscriptionStream = graphQLClient.CreateSubscriptionStream<CustomObject>(graphqlRequest,
    (Action<WebSocketException>)(response => {
        Console.WriteLine(response);
    }));

    The exception clearly states this is due to the ssl cert not being trusted. I need to find a way for C# to allow the untrusted cert.

    I have tried the following:

    var handler = new HttpClientHandler();
handler.ClientCertificateOptions = ClientCertificateOption.Manual;
handler.ServerCertificateCustomValidationCallback =
    (httpRequestMessage, cert, cetChain, policyErrors) =>
    {
        return true;
    };
var graphQLClient = new GraphQLHttpClient(url, new NewtonsoftJsonSerializer(), new HttpClient(handler));
var subscriptionStream = graphQLClient.CreateSubscriptionStream<CustomObject>(graphqlRequest,
    (Action<WebSocketException>)(response => {
        Console.WriteLine(response);
    }));
var subscription = subscriptionStream.Subscribe((Action<GraphQLResponse<CustomObject>>)(response =>
{
    ...
}));

    I have also tried

    var graphQLClient = new GraphQLHttpClient(o => {
    o.WebSocketEndPoint = new Uri(url);
    o.UseWebSocketForQueriesAndMutations = false;
}, new NewtonsoftJsonSerializer());
ServicePointManager.ServerCertificateValidationCallback += (sender, cert, chain, sslPolicyErrors) => true;
var subscriptionStream = graphQLClient.CreateSubscriptionStream<CustomObject>(graphqlRequest,
    (Action<WebSocketException>)(response => {
        Console.WriteLine(response);
    }));
var subscription = subscriptionStream.Subscribe((Action<GraphQLResponse<CustomObject>>)(response =>
{
    ...
}));

    Both cases result in the untrusted cert exception being thrown. I have also tried installing the self-signed ca cert and the self-signed cert on the windows machine running this code.

    Any Ideas? Buying a ca trusted cert is not an acceptable answer. I'll reiterate that I can connect over ssl to the same server with javascript, so it's nothing server side.

    • graphql
    • ssl-certificate
    • self-signed
    • graphql-dotnet
    • trusted-vs-untrusted
    Share Improve this question asked Mar 15 at 16:04 tantonjtantonj 11 bronze badge
    Add a comment  | 

    1 Answer 1

    Reset to default 0

    For subscriptions, I am creating my graphQLHttpClient like this :

    var graphQLHttpClient = new GraphQLHttpClient(graphQLOptions, new NewtonsoftJsonSerializer());

    Where:

    var graphQLOptions = new GraphQLHttpClientOptions
{
  ...
  ConfigureWebsocketOptions = s => {
    s.RemoteCertificateValidationCallback = (sender, cert, chain, sslPolicyErrors) => { return true; };
  }
};

    Hope this helps!

    与本文相关的文章

    发布评论

    评论列表(0)

    1. 暂无评论