简体繁体 English

通过 SSL 调用 Web Api 时出现 403 禁止错误

[英]403 Forbidden Error when calling Web Api over SSL

原文 2021-11-15 14:10:04 7 1 c#/ asp.net-mvc/ ssl/ asp.net-web-api

I have a standard C# Web Api running on IIS that has a custom AuthorizeAttribute to properly authorize calls via a key in the request header variables.我有一个在 IIS 上运行的标准 C# Web Api，它具有自定义 AuthorizeAttribute 以通过请求标头变量中的键正确授权调用。 Recently, one of my clients calls to the API over SSL have started to fail with an 403 Forbidden error.最近，我的一个客户端通过 SSL 调用 API 开始失败，出现 403 Forbidden 错误。 He is successful when calling the non-SSL url.他在调用非 SSL url 时成功。

The same call - same url, api key etc. works perfectly over SSL from my machine, and none of my other clients are having any issues with this.相同的调用 - 相同的 url、api 密钥等在我的机器上通过 SSL 完美运行，我的其他客户都没有遇到任何问题。 What could possibly be the issue for this specific client?这个特定客户可能有什么问题？ I have checked some basic things like his client machine time settings etc. are all in order, not sure if this could be some kind of certificate related issue?我检查了一些基本的东西，比如他的客户端机器时间设置等。都井井有条，不确定这是否可能是某种证书相关的问题？

1 个解决方案

try the following:尝试以下操作：

1- check the proxy on his machine 1-检查他机器上的代理

2- since SSL is used to protect data and safety the data should not change in the way on the server. 2- 由于SSL用于保护数据和安全，因此数据不应以服务器上的方式更改。 it could be changed by a virus on the machine (I have the same problem with one of my clients) make sure his system is clean它可能会被机器上的病毒改变（我的一个客户有同样的问题）确保他的系统是干净的

3- consider calling the API in other ways like (postman, browser, ...) 3- 考虑以其他方式调用 API，例如（邮递员、浏览器……）

according to what you write clearly, there is something wrong with his machine.根据你写的清楚，他的机器有问题。 if you find the problem It would be nice to tell me too如果你发现问题也很高兴告诉我