| Author | Topic: To Boris Borzic: Xb2.net + SSL question ? | |
|---|---|---|
 | Nico Houben | To Boris Borzic: Xb2.net + SSL question ? on Fri, 08 Apr 2011 21:04:22 +0200 Hello Everybody, At the moment i'm considering buying sqlexpress + xb2.net ssl, but i've one more question and maybe somebody can answer it for me?! Is it possiblie to open a secure socket to a server which require the client to authenticate itself to the server by sending a certificate (certificatestore) before posting a request. Certificate is installed by the goverment on a pc without export options enabled etc. At the moment we use Dart (http://www.dart.com/ptssl.aspx) and this works but has to be installed in windows\system etc.. which isn't alway's allowed on some systems and register as an activex component (***** sysadmins). Kind regards, Nico Houben |
| Boris Borzic | Re: To Boris Borzic: Xb2.net + SSL question ? on Sat, 09 Apr 2011 00:44:15 +0200 Nico Houben wrote in news:61ba4e2$3b99846f$4c8d0@news.alaska-software.com: > Is it possiblie to open a secure socket to a server which require the > client to authenticate itself to the server by sending a certificate > (certificatestore) before posting a request. Certificate is installed > by the goverment on a pc without export options enabled etc. > > At the moment we use Dart (http://www.dart.com/ptssl.aspx) and this > works but has to be installed in windows\system etc.. which isn't > alway's allowed on some systems and register as an activex component > (***** sysadmins). Yes it is possible. I'm assuming that you need this on the clent-side. The information for using a certificate can be found here: http://www.xb2.net/xb2net/SSL_FAQ.htm The section that you want is in titled: "How do I use the certificate in my Xb2.NET web server" This is for the server-side, but the same applies for the client-side. Best regards, Boris Borzic http://xb2.net http://sqlexpress.net industrial strength Xbase++ development tools |
| Nico Houben | Re: To Boris Borzic: Xb2.net + SSL question ? on Sun, 10 Apr 2011 09:57:57 +0200 Hello Boris, Yes it is for the client side, but de certificate file is only installed in the store and cann't be exported. So I don't have a file and if I read the documentation correctly I need to add a file to the xbSSLContext ?! I found: xbHTTPClient + :CertKeyword But when the certificates get installed (they are installed by a third party on each client.) they sometimes forget to remove the old certificate with exactly the same name, ValidFrom-ValidTo is different. (Yes the old certificate can be removed but still this are unnecessary phone calls to the helpdesk). In Dart we use the serial of a certificate to be sure we add the correct certificate to the transaction. Hope someting like this is also possible, maybe better explained by a little example code. Kind regards, Nico Houben Boris Borzic wrote in message news:Xns9EC1BE89671BFSQLExpress@87.106.143.233... >Nico Houben wrote in >news:61ba4e2$3b99846f$4c8d0@news.alaska-software.com: > > >Yes it is possible. I'm assuming that you need this on the clent-side. > >The information for using a certificate can be found here: >http://www.xb2.net/xb2net/SSL_FAQ.htm > >The section that you want is in titled: >"How do I use the certificate in my Xb2.NET web server" > >This is for the server-side, but the same applies for the client-side. |
| Boris Borzic | Re: To Boris Borzic: Xb2.net + SSL question ? on Sun, 10 Apr 2011 14:21:55 +0200 Nico Houben wrote in news:73a666f3$4831ab5$5af44@news.alaska-software.com: > Yes it is for the client side, but de certificate file is only > installed in the store and cann't be exported. So I don't have a file > and if I read the documentation correctly I need to add a file to the > xbSSLContext ?! To use the windows certificate store on the client-side, you can do something like this: oHttp := xbHTTPClient():new() oHttp:Transport := VIA_WININET oHttp:CertUseDefault := .t. or to find a specific certificate use this: //oHttp:CertKeyword := "Nico Houben" oResponse := oHttp:Execute("https://testing.com/somefile.htm") Please see the docs for more info on these config properties. Best regards, Boris Borzic http://xb2.net http://sqlexpress.net industrial strength Xbase++ development tools |
| Clifford Wiernik | Re: To Boris Borzic: Xb2.net + SSL question ? on Sun, 17 Apr 2011 19:11:24 -0500 On 4/10/2011 7:21 AM, Boris Borzic wrote: > Nico Houben wrote in > news:73a666f3$4831ab5$5af44@news.alaska-software.com: > >> Yes it is for the client side, but de certificate file is only >> installed in the store and cann't be exported. So I don't have a file >> and if I read the documentation correctly I need to add a file to the >> xbSSLContext ?! > > To use the windows certificate store on the client-side, you can do > something like this: > > oHttp := xbHTTPClient():new() > oHttp:Transport := VIA_WININET > oHttp:CertUseDefault := .t. > or to find a specific certificate use this: > //oHttp:CertKeyword := "Nico Houben" > > oResponse := oHttp:Execute("https://testing.com/somefile.htm") > > Please see the docs for more info on these config properties. > I have used it with a certificate, not via the store, successfully. |
| Author | Topic: To Boris Borzic: Xb2.net + SSL question ? | |
|---|---|---|
| Nico Houben | To Boris Borzic: Xb2.net + SSL question ? on Fri, 08 Apr 2011 21:04:22 +0200 |
| Boris Borzic | Re: To Boris Borzic: Xb2.net + SSL question ? on Sat, 09 Apr 2011 00:44:15 +0200 |
| Nico Houben | Re: To Boris Borzic: Xb2.net + SSL question ? on Sun, 10 Apr 2011 09:57:57 +0200 |
| Boris Borzic | Re: To Boris Borzic: Xb2.net + SSL question ? on Sun, 10 Apr 2011 14:21:55 +0200 |
| Clifford Wiernik | Re: To Boris Borzic: Xb2.net + SSL question ? on Sun, 17 Apr 2011 19:11:24 -0500 |