[英]IdentityServer4 shared X509 certificate at AWS
I have IdentityServer4 endpoint as AWS Lambda and I need to share signing/validation certificate between lambda instances.我有 IdentityServer4 端点作为 AWS Lambda,我需要在 lambda 实例之间共享签名/验证证书。
This is a current workarnound:这是当前的工作通告:
var identityServer = services.AddIdentityServer(options => {});
if (env.IsDevelopment())
{
identityServer.AddDeveloperSigningCredential();
}
else
{
identityServer.AddSigningCredential(GetIdentityServerCertificate(Configuration));
and和
private static X509Certificate2 GetIdentityServerCertificate(
IConfiguration configuration
)
{
var pfxSecret = System.Environment.GetEnvironmentVariable("CERT_PRIVATE");
var pfxBytes = Convert.FromBase64String(pfxSecret);
var certificate = new X509Certificate2(pfxBytes);
return certificate;
}
Does AWS have any product suitable for storing certificates? AWS 有没有适合存储证书的产品?
Thanks!谢谢!
You can store private key of a certificate in AWS Secrets Manager .您可以将证书的私钥存储在AWS Secrets Manager中。 Here you can find some additional inforamtion how to use AWS Secrets Manager for storing certificates.
您可以在此处找到一些其他信息,了解如何使用 AWS Secrets Manager 存储证书。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.