My ASP.NET Core client app generates an error. When debugged, it fails on the HttpResponseMessage line
...
var content = new StringContent(jsonContent, Encoding.UTF8, "application/json");
HttpResponseMessage response = await client.PostAsync(tokenEndpoint, content);
...
I get this error:
SSL connection could not be established: AuthenticationException: The remote certificate is invalid according to the validation procedure: RemoteCertificateNameMismatch.
The token endpoint is correct, I don't get any response errors (401, 403..etc) to help me troubleshoot possible code related stuff.
If I run the test using Postman, it works fine.
Trying to understand the difference, the only thing I see is that Postman has "SSL configuration" off and "ca certificate" off (by default).
I even exported the cert from server (where the API is running) and import it to client were running the ASP.NET Core client app - no luck :(
So at this time my question is: why does Postman not complain about cert mismatch?
So at this time my question is: why does Postman not complain about cert mismatch?
You are not getting error with postman because you have set the Postman to disable SSL certificate verification. that means Postman will ignore certificate errors, such as a mismatch between the certificate's hostname and the server's hostname.
To resolve the error first you could check the server's certificate matches the expected hostname.
Install the certificate in the trusted root folder of the machine certificate.
Or you could ignore this certificate error by using code:
var handler = new HttpClientHandler
{
ServerCertificateCustomValidationCallback = (message, cert, chain, errors) => true
};
using (var client = new HttpClient(handler))
{
var content = new StringContent(jsonContent, Encoding.UTF8, "application/json");
HttpResponseMessage response = await client.PostAsync(tokenEndpoint, content);
...
.......
}