I would like to secure my REST service implemented over the Service Stack, by means of X509 certificates? I will be hosting my service in a .NET application.
I can build the service and it seems to work fine.
Any working example using certificates would be highly appreciated.
I've been following these two examples:
http://pfelix.wordpress.com/2012/02/26/enabling-https-with-self-hosted-asp-net-web-api/
http://blogs.msdn.com/b/jpsanders/archive/2009/09/29/walkthrough-using-httplistener-as-an-ssl-simple-server.aspx
From the two blogs I did the following:
Obtained a cert and installed in the Local Computer > Personal > Certificates
Set my Endpoint address to be: https://*:443/
Ran the commands from the blogs:
netsh http add urlacl url=https://+:443/ user=XXX
I later found that this didn't work and this did
netsh http add urlacl url=https://*:443/ user=XXX
Then linked the certificate:
netsh http add sslcert ipport=0.0.0.0:443 certhash=XXXX appid={XXX}
This failed with a Fatal Error - 1312, this link explains the cause of the problem. The resolution was fairly easy for our network guy, but beyond my understanding of certs.
Once the correct cert was installed, the netsh command ran without a problem and I was up and running with SSL.
{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://img.manongdao.com/sparkler-677774__340.jpg', '推荐 仙女界的扛把子 的文章《How do I secure my service using SSL for Services 》','https://www.manongdao.com/article-640383.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}