Is there a way to declaratively set the ServicePointManager ServerCertificateValidationCallback property from a * .config file?

Question

Is there a way to declaratively set the ServicePointManager ServerCertificateValidationCallback property from a * .config file?

I am looking for a way to disable certificate verification in a declarative way. This would be very useful, for example, when using svcutil.exe.

So far, I know how to disable hostname verification:

<system.net> <settings> <servicePointManager checkCertificateName="false" /> </settings> </system.net>

but this is not enough. I saw someone claim that this can be done, but without any selection.

+7

.net validation ssl-certificate

Piotr owsiak Dec 20 '10 at 12:25

source share

3 answers

Alexey Gusarov · Answer 1 · 2012-10-08T19:28:36+0000

I use this ugly hack for use only in UnitTests :(

app.config:

 <system.net> <webRequestModules xdt:Transform="Insert"> <clear/> <add prefix = "http" type = "HttpRequestCreatorWithServerCertificateValidationCallback, TestHelpers"/> <add prefix = "https" type = "HttpRequestCreatorWithServerCertificateValidationCallback, TestHelpers"/> </webRequestModules> </system.net>

HttpRequestCreatorWithServerCertificateValidationCallback.cs

 public class HttpRequestCreatorWithServerCertificateValidationCallback : IWebRequestCreate { static HttpRequestCreatorWithServerCertificateValidationCallback() { var type = typeof(HttpWebRequest).Assembly.GetType("System.Net.HttpRequestCreator"); var ctor = type.GetConstructors()[0]; Creator = (IWebRequestCreate)ctor.Invoke(null); ServicePointManager.ServerCertificateValidationCallback += delegate { return true; }; } #region IWebRequestCreate Members public WebRequest Create(Uri uri) { return Creator.Create(uri); } #endregion private static readonly IWebRequestCreate Creator; }

mosu · Answer 2 · 2012-10-19T12:52:26+0000

I use this when working with HttpClient:

  <system.net> <settings> <servicePointManager checkCertificateName="false" checkCertificateRevocationList="false" /> </settings> </system.net>

I took it from the Internet, I don’t remember where. It works for my internal calls.

Ris adams · Answer 3 · 2011-02-02T16:42:25+0000

 System.Net.ServicePointManager.ServerCertificateValidationCallback = ((sender, certificate, chain, sslPolicyErrors) => true);

Is there a way to declaratively set the ServicePointManager ServerCertificateValidationCallback property from a * .config file?

More articles: