gpt4 book ai didi

.net - MVC 中的客户端证书颁发者(指纹)

转载 作者:行者123 更新时间:2023-12-01 02:32:13 28 4
gpt4 key购买 nike

在 MVC 应用程序中,我需要验证客户端证书是否由特定 CA 签名/颁发。

我知道如何获取 Request.ClientCertificateX509Certificate2从中,但我无法弄清楚如何检查发行人。Request.ClientCertificate.Issuer给出了 Issuer 的主题,但我认为这不够安全。

我希望能够检查颁发者指纹,那么如何从客户端证书中检索它?

最佳答案

// get the X509 from HTTP client certificate
var x509 = new X509Certificate2(this.Request.ClientCertificate.Certificate);

// create the certificate chain by using the machine store
var chain = new X509Chain(true);
chain.ChainPolicy.RevocationMode = X509RevocationMode.Offline;
chain.Build(x509);

// at this point chain.ChainElements[0] will contain the original
// certificate, the higher indexes are the issuers.
// note that if the certificate is self-signed, there will be just one entry.
var issuer = chain.ChainElements[1].Certificate.Thumbprint;

关于.net - MVC 中的客户端证书颁发者(指纹),我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/12480015/

28 4 0
Copyright 2021 - 2024 cfsdn All Rights Reserved 蜀ICP备2022000587号
广告合作:1813099741@qq.com 6ren.com