feat(SSL): Allow self signed certificates

mediumTaj · mediumTaj · commit 8b79c4438279 · 2018-09-21T16:01:02.000-05:00
diff --git a/README.md b/README.md
@@ -144,6 +144,17 @@ void Example()
 }
 ```
 
+## Self signed certificates
+You can disable SSL verification on calls to Watson (only do this if you really mean to!).
+```cs
+void Example()
+{
+    AssistantService assistant = new AssistantService("<username>", "<password>", "<version-date>");
+    assistant.SendAsInsecure(true);
+    var results = assistant.Message("<workspace-id>", "<message-request>");
+}
+```
+
 ## Documentation
 Click [here][dotnet-standard-sdk-documentation] for documentation by release and branch.
 
diff --git a/src/IBM.WatsonDeveloperCloud/Http/IClient.cs b/src/IBM.WatsonDeveloperCloud/Http/IClient.cs
@@ -50,5 +50,7 @@ public interface IClient : IDisposable
         IRequest SendAsync(HttpMethod method, string resource);
 
         IRequest SendAsync(HttpRequestMessage message);
+
+        void SendAsInsecure(bool insecure);
     }
 }
diff --git a/src/IBM.WatsonDeveloperCloud/Http/WatsonHttpClient.cs b/src/IBM.WatsonDeveloperCloud/Http/WatsonHttpClient.cs
@@ -35,9 +35,20 @@ public class WatsonHttpClient : IClient
 
         public MediaTypeFormatterCollection Formatters { get; protected set; }
 
+        public bool Insecure = false;
+
         public WatsonHttpClient(string baseUri)
         {
-            this.BaseClient = new HttpClient();
+            if (Insecure)
+            {
+                var httpClientHandler = new HttpClientHandler();
+                httpClientHandler.ServerCertificateCustomValidationCallback = (message, cert, chain, errors) => { return true; };
+                this.BaseClient = new HttpClient(httpClientHandler);
+            }
+            else
+            {
+                this.BaseClient = new HttpClient();
+            }
             this.Filters = new List<IHttpFilter> { new ErrorFilter() };
             if (baseUri != null)
                 this.BaseClient.BaseAddress = new Uri(baseUri);
@@ -47,21 +58,35 @@ public WatsonHttpClient(string baseUri)
 
         public WatsonHttpClient(string baseUri, string userName, string password)
         {
-            this.BaseClient = new HttpClient();
-
+            if (Insecure)
+            {
+                var httpClientHandler = new HttpClientHandler();
+                httpClientHandler.ServerCertificateCustomValidationCallback = (message, cert, chain, errors) => { return true; };
+                this.BaseClient = new HttpClient(httpClientHandler);
+            }
+            else
+            {
+                this.BaseClient = new HttpClient();
+            }
             this.Filters = new List<IHttpFilter> { new ErrorFilter() };
-
             if (baseUri != null)
                 this.BaseClient.BaseAddress = new Uri(baseUri);
-
             this.Formatters = new MediaTypeFormatterCollection();
-
             this.WithAuthentication(userName, password);
         }
 
         public WatsonHttpClient(string baseUri, string userName, string password, HttpClient client)
         {
-            this.BaseClient = client;
+            if (Insecure)
+            {
+                var httpClientHandler = new HttpClientHandler();
+                httpClientHandler.ServerCertificateCustomValidationCallback = (message, cert, chain, errors) => { return true; };
+                this.BaseClient = new HttpClient(httpClientHandler);
+            }
+            else
+            {
+                this.BaseClient = new HttpClient();
+            }
             this.Filters = new List<IHttpFilter> { new ErrorFilter() };
             if (baseUri != null)
                 this.BaseClient.BaseAddress = new Uri(baseUri);
@@ -165,5 +190,10 @@ protected virtual void Dispose(bool isDisposing)
         {
             Dispose(false);
         }
+
+        public void SendAsInsecure(bool insecure)
+        {
+            Insecure = insecure;
+        }
     }
 }
diff --git a/src/IBM.WatsonDeveloperCloud/Service/WatsonService.cs b/src/IBM.WatsonDeveloperCloud/Service/WatsonService.cs
@@ -140,5 +140,10 @@ public void SetEndpoint(string url)
             _userSetEndpoint = true;
             this.Endpoint = url;
         }
+
+        public void SendAsInsecure(bool insecure)
+        {
+            this.Client.SendAsInsecure(insecure);
+        }
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -50,5 +50,7 @@ public interface IClient : IDisposable`
`50`	`50`	`IRequest SendAsync(HttpMethod method, string resource);`
`51`	`51`
`52`	`52`	`IRequest SendAsync(HttpRequestMessage message);`
	`53`	`+`
	`54`	`+ void SendAsInsecure(bool insecure);`
`53`	`55`	`}`
`54`	`56`	`}`
Original file line number	Diff line number	Diff line change
`@@ -140,5 +140,10 @@ public void SetEndpoint(string url)`
`140`	`140`	`_userSetEndpoint = true;`
`141`	`141`	`this.Endpoint = url;`
`142`	`142`	`}`
	`143`	`+`
	`144`	`+ public void SendAsInsecure(bool insecure)`
	`145`	`+ {`
	`146`	`+ this.Client.SendAsInsecure(insecure);`
	`147`	`+ }`
`143`	`148`	`}`
`144`	`149`	`}`