There's plenty about this, but still I got caught out for a while this afternoon...
When using IIS express you can host a service expecting SSL, if you want to make calls into the local service it looks like you do have to trust the default localhost cert installed for IISExpress (see inetmgr "server certificates", this can be exported and imported into certmgr.msc)
See here for enabling SSL and a neat workaround for port numbers (iis express doesn't use 443 by default)
And
Jon Simpsons nice post for sending client credentials to a service which then uses ASP net authentication
Update: Another way (but not that safe) is to ingore the local cert trust issue in the client by adding this (in vb in this example)
System.Net.ServicePointManager.ServerCertificateValidationCallback = New System.Net.Security.RemoteCertificateValidationCallback(Function() True)
No comments:
Post a Comment