对于下面的代码,它在调用时捕获一个 HttpRequestException/System.Net.Http.WinHttpException
例外情况如下:
NativeErrorCode 12175
Message "A security error occurred"
- e {System.Net.Http.HttpRequestException: An error occurred while sending the request. ---> System.Net.Http.WinHttpException: A security error occurred
at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
at System.Runtime.CompilerServices.ConfiguredTaskAwaitable`1.ConfiguredTaskAwaiter.GetResult()
at System.Net.Http.WinHttpHandler.<StartRequest>d__105.MoveNext()
--- End of inner exception stack trace ---
at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
at System.Runtime.CompilerServices.ConfiguredTaskAwaitable`1.ConfiguredTaskAwaiter.GetResult()
at System.Net.Http.HttpClient.<FinishSendAsync>d__58.MoveNext()
--- End of stack trace from previous location where exception was thrown ---
at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
at System.Runtime.CompilerServices.TaskAwaiter`1.GetResult()
at Controllers.Controller.<Get>d__0.MoveNext()
但是在相同的端点、资源、标头和正文上使用 Postman,我得到了 200 的回报。
POST /account/ HTTP/1.1
Host: test-org.com
X-HTTP-Method-Override: GET
Content-Type: application/xml
Cache-Control: no-cache
Postman-Token: ce565d1a-bfb7-0961-ffd7-d279b90e97c5
<?xml version="1.0" encoding="UTF-8"?>
<accountMessage xmlns="http://sdfssd
........
</accountMessage>
当我在谷歌上搜索NativeErrorCode 12175 .NET时,我发现:https://msdn.microsoft.com/en-us/library/windows/desktop/aa383770(v=vs.85(.aspx
ERROR_WINHTTP_SECURE_FAILURE
12175
One or more errors were found in the Secure Sockets Layer (SSL) certificate sent by the server. To determine what type of error was encountered, check for a WINHTTP_CALLBACK_STATUS_SECURE_FAILURE notification in a status callback function. For more information, see WINHTTP_STATUS_CALLBACK.
损坏的代码:
// GET: api/Accounts
[HttpGet]
public async Task<IActionResult> Get()
{
try
{
using (var client = new HttpClient())
{
try
{
client.BaseAddress = new Uri("https://test-org.com/");
HttpRequestMessage request = new HttpRequestMessage(HttpMethod.Post, "account");
request.Content = new StringContent("<?xml version="1.0" encoding="UTF-8"?>rn<accountMessage xml...</accountMessage>",Encoding.UTF8,"application/xml");
request.Headers.Add("X-HTTP-Method-Override", "GET");
var response = await client.SendAsync(request);
response.EnsureSuccessStatusCode();
var stringResponse = await response.Content.ReadAsStringAsync();
var posts = JsonConvert.DeserializeObject<IEnumerable<Post>>(stringResponse);
if (posts == null) return NotFound($"Posts were not found");
return Ok(posts);
}
catch (HttpRequestException e)
{
Console.WriteLine($"Request exception: {e.Message}");
}
}
}
catch (Exception)
{
}
return BadRequest();
}
我与服务器/服务的所有者进行了交谈。 他们正在提供一项全新的服务,该服务目前使用的是自签名证书。 在服务器/服务使用可以通过证书颁发机构验证的真实证书之前,我将在我的代码中绕过证书验证:
using (var httpClientHandler = new HttpClientHandler())
{
httpClientHandler.ServerCertificateCustomValidationCallback = (message, cert, chain, errors) => { return true; };
using (var client = new HttpClient(httpClientHandler))
{
try
{
client.BaseAddress = new Uri("https://test-org.com/");