Replace raw bytes with x509 certificate to allow specify passwords and flagsrelease/3.x.x
@@ -85,7 +85,7 @@ namespace MQTTnet.Extensions.WebSocket4Net | |||||
{ | { | ||||
foreach (var certificate in _webSocketOptions.TlsOptions.Certificates) | foreach (var certificate in _webSocketOptions.TlsOptions.Certificates) | ||||
{ | { | ||||
certificates.Add(new X509Certificate(certificate)); | |||||
certificates.Add(certificate); | |||||
} | } | ||||
} | } | ||||
@@ -256,7 +256,7 @@ namespace MQTTnet.Client.Options | |||||
UseTls = true, | UseTls = true, | ||||
SslProtocol = _tlsParameters.SslProtocol, | SslProtocol = _tlsParameters.SslProtocol, | ||||
AllowUntrustedCertificates = _tlsParameters.AllowUntrustedCertificates, | AllowUntrustedCertificates = _tlsParameters.AllowUntrustedCertificates, | ||||
Certificates = _tlsParameters.Certificates?.Select(c => c.ToArray()).ToList(), | |||||
Certificates = _tlsParameters.Certificates?.ToList(), | |||||
CertificateValidationCallback = _tlsParameters.CertificateValidationCallback, | CertificateValidationCallback = _tlsParameters.CertificateValidationCallback, | ||||
IgnoreCertificateChainErrors = _tlsParameters.IgnoreCertificateChainErrors, | IgnoreCertificateChainErrors = _tlsParameters.IgnoreCertificateChainErrors, | ||||
IgnoreCertificateRevocationErrors = _tlsParameters.IgnoreCertificateRevocationErrors | IgnoreCertificateRevocationErrors = _tlsParameters.IgnoreCertificateRevocationErrors | ||||
@@ -18,7 +18,7 @@ namespace MQTTnet.Client.Options | |||||
public SslProtocols SslProtocol { get; set; } = SslProtocols.Tls12; | public SslProtocols SslProtocol { get; set; } = SslProtocols.Tls12; | ||||
public IEnumerable<IEnumerable<byte>> Certificates { get; set; } | |||||
public IEnumerable<X509Certificate> Certificates { get; set; } | |||||
public bool AllowUntrustedCertificates { get; set; } | public bool AllowUntrustedCertificates { get; set; } | ||||
@@ -16,7 +16,7 @@ namespace MQTTnet.Client.Options | |||||
public bool AllowUntrustedCertificates { get; set; } | public bool AllowUntrustedCertificates { get; set; } | ||||
public List<byte[]> Certificates { get; set; } | |||||
public List<X509Certificate> Certificates { get; set; } | |||||
public SslProtocols SslProtocol { get; set; } = SslProtocols.Tls12; | public SslProtocols SslProtocol { get; set; } = SslProtocols.Tls12; | ||||
@@ -132,7 +132,7 @@ namespace MQTTnet.Implementations | |||||
throw new NotSupportedException("Only one client certificate is supported for UWP."); | throw new NotSupportedException("Only one client certificate is supported for UWP."); | ||||
} | } | ||||
return new Certificate(options.TlsOptions.Certificates.First().AsBuffer()); | |||||
return new Certificate(options.TlsOptions.Certificates.First().GetRawCertData()); | |||||
} | } | ||||
private IEnumerable<ChainValidationResult> ResolveIgnorableServerCertificateErrors() | private IEnumerable<ChainValidationResult> ResolveIgnorableServerCertificateErrors() | ||||
@@ -214,7 +214,7 @@ namespace MQTTnet.Implementations | |||||
foreach (var certificate in _options.TlsOptions.Certificates) | foreach (var certificate in _options.TlsOptions.Certificates) | ||||
{ | { | ||||
certificates.Add(new X509Certificate2(certificate)); | |||||
certificates.Add(certificate); | |||||
} | } | ||||
return certificates; | return certificates; | ||||
@@ -84,7 +84,7 @@ namespace MQTTnet.Implementations | |||||
clientWebSocket.Options.ClientCertificates = new X509CertificateCollection(); | clientWebSocket.Options.ClientCertificates = new X509CertificateCollection(); | ||||
foreach (var certificate in _options.TlsOptions.Certificates) | foreach (var certificate in _options.TlsOptions.Certificates) | ||||
{ | { | ||||
clientWebSocket.Options.ClientCertificates.Add(new X509Certificate(certificate)); | |||||
clientWebSocket.Options.ClientCertificates.Add(certificate); | |||||
} | } | ||||
} | } | ||||