Loading a certificate as embedded resource in an assembly

3
votes

I have added a PFX file as an embedded resource in an assembly to use the certificate to sign a JWT token. I load the pfx as stream and read all the bytes and using X509Certificate2 to load the private key

public X509Certificate2(byte[] rawData, string password)

Works fine on dev machine in both Debug/Release, but when deployed to azure apps ervice or a build machine i am seeing "Bad data" error.

Any help greatly appreciated. Thanks

1
c#azurecertificateembedded-resourcex509certificate2
Since I can't seem to read my .pfx file from my embedded resources, could you post your code on how to do this? If necessary, I could ask a SO question - Wouter Vanherck
Never mind, got it working - Wouter Vanherck

1 Answers

3
votes

It seems that you’d like to access certificate from app on Azure App Service web app, you can upload your certificate to the certificates collection in Azure Websites and consume it in your web application from your site’s personal certificate store.

Upload a certificate

enter image description here Adding an app setting named WEBSITE_LOAD_CERTIFICATES with its value set to the thumbprint of the certificate

enter image description here

Consuming certificate in application 

X509Certificate2 retVal = null;

X509Store certStore = new X509Store(StoreName.My, StoreLocation.CurrentUser);
certStore.Open(OpenFlags.ReadOnly);

X509Certificate2Collection certCollection = certStore.Certificates.Find(X509FindType.FindByThumbprint, thumbprint, false);

if (certCollection.Count > 0)
{
    retVal = certCollection[0];
}

certStore.Close();

For detailed information, please check: Using Certificates in Azure Websites Applications