Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

502 error when generating X509Certificate2 from p12 certificate in Azure Websites for Google API

Tags:

c#

asp.net

google-api

azure

I'm using This GoogleJsonWebToken class to generate an access token to be used with json calls to the Google Calendar API. It works perfectly fine in IIS Express on my dev machine when I use the following (using my actual service account email):

string p12Path = HttpContext.Current.Server.MapPath("~/App_Data/certificate.p12");
var auth = GoogleJsonWebToken.GetAccessToken("[email protected]",
                                             p12Path,
                                             "https://www.googleapis.com/auth/calendar");
string Token = auth["access_token"];

To test this I'm just calling @Token in my cshtml razor view. When I publish this to my Azure website it doesn't work. If i leave the GoogleJsonWebToken class unmodified I get a very unhelpful 502 - Web server received an invalid response while acting as a gateway or proxy server. with no other information.

After some Google searches I found this SO post which is a similar problem. So I tried their solution I get System.Security.Cryptography.CryptographicException: The system cannot find the file specified. when that is run from my Azure Website. When it is run from my dev machine I get System.Net.WebException: The remote server returned an error: (400) Bad Request. which I think is because with that solution the CspKeyContainerInfo.KeyContainerName is null whereas the original unmodified class when run on my dev machine gives me something like {C0E26DC5-5D2C-4C77-8E40-79560F519588} which is randomly generated each time and this value is used in the process of signing the signature.

I then found this SO post but that solution yielded the same results as the last solution.

I have also tried most of the different combinations of X509KeyStorageFlags to no avail.

How can I either generate the CspKeyContainerInfo.KeyContainerName myself or otherwise successfully generate the X509Certificate2?

like image 735
mhcodner Avatar asked May 08 '15 10:05

mhcodner

1 Answers

I found the solution on this MSDN forum post. Basically I needed to set X509KeyStorageFlags.Exportable | X509KeyStorageFlags.MachineKeySet as I read in the first SO post I mentioned and then I needed Flags = CspProviderFlags.UseMachineKeyStore in my CspParamaters.

I have posted my full solution on GitHub

like image 84
mhcodner Avatar answered Nov 02 '22 06:11

mhcodner
Sign in to Comment

Related questions

Are MakeGenericType / generic types garbage collected?
C# extracting data from XML
Should an override of Equals on a reference type always mean value equality?
Regarding Primitive Data Types in C#
Writing JSON to a stream without buffering the string in memory
Powershell vs C# [closed]
C# help required to Create Facebook AppSecret_Proof HMACSHA256
How to check the internet connection availability in windows phone 8 application
EF Code First: Add row to table with a non-identity primary key
Out parameter might not be initialized before accessing
Passing Parameters between xaml window and usercontrol WPF
How can I use Url.Action with list parameters?
Is there a VB.NET expression that *always* yields null?
Find all usages of an ASP.NET MVC View with Resharper
Find common parent-path in list of files and directories
How to customize error message of OAuthAuthorizationServerProvider?
What is PCRE-compatible syntax? And is C# PCRE-compatible?
Cannot convert lambda expression to type "..." because it is not a delegate type
How to list users with role names in ASP.NET MVC 5
ASP.NET Web API with custom authentication

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!