dotnet-api-docs/snippets/csharp/System.Net/ICertificatePolicy/Overview/source.cs at 5b93c4018c670ce26a7cf91f08f9891da4740447 · dotnet/dotnet-api-docs · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
using System;
using System.Net;
using System.Security.Cryptography.X509Certificates;

// WARNING: ICertificatePolicy is obsolete. Use ServerCertificateValidationCallback instead.
// Never bypass certificate validation in production code. Doing so exposes
// the application to man-in-the-middle attacks.
// <Snippet1>
 public  enum    CertificateProblem  : long
 {
         CertEXPIRED                   = 0x800B0101,
         CertVALIDITYPERIODNESTING     = 0x800B0102,
         CertROLE                      = 0x800B0103,
         CertPATHLENCONST              = 0x800B0104,
         CertCRITICAL                  = 0x800B0105,
         CertPURPOSE                   = 0x800B0106,
         CertISSUERCHAINING            = 0x800B0107,
         CertMALFORMED                 = 0x800B0108,
         CertUNTRUSTEDROOT             = 0x800B0109,
         CertCHAINING                  = 0x800B010A,
         CertREVOKED                   = 0x800B010C,
         CertUNTRUSTEDTESTROOT         = 0x800B010D,
         CertREVOCATION_FAILURE        = 0x800B010E,
         CertCN_NO_MATCH               = 0x800B010F,
         CertWRONG_USAGE               = 0x800B0110,
         CertUNTRUSTEDCA               = 0x800B0112
 }

 public class MyCertificateValidation : ICertificatePolicy
 {
     // Default policy for certificate validation.
     public static bool DefaultValidate = false;

     public bool CheckValidationResult(ServicePoint sp, X509Certificate cert,
        WebRequest request, int problem)
     {
         bool ValidationResult=false;
         Console.WriteLine("Certificate Problem with accessing " +
            request.RequestUri);
         Console.Write("Problem code 0x{0:X8},",(int)problem);
         Console.WriteLine(GetProblemMessage((CertificateProblem)problem));

         ValidationResult = DefaultValidate;
         return ValidationResult;
     }

     private String GetProblemMessage(CertificateProblem Problem)
     {
         String ProblemMessage = "";
         CertificateProblem problemList = new CertificateProblem();
         String ProblemCodeName = Enum.GetName(problemList.GetType(),Problem);
         if(ProblemCodeName != null)
            ProblemMessage = ProblemMessage + "-Certificateproblem:" +
               ProblemCodeName;
         else
            ProblemMessage = "Unknown Certificate Problem";
         return ProblemMessage;
      }
 }

// </Snippet1>