/// <summary>
/// Configures TLS.
/// </summary>
/// <param name="builder">The builder to configure.</param>
/// <param name="certificate">The server certificate.</param>
/// <param name="configureOptions">An Action to configure the <see cref="TlsOptions"/>.</param>
/// <returns>The builder.</returns>
public static IClientBuilder UseTls(
this IClientBuilder builder,
X509Certificate2 certificate,
Action <TlsOptions> configureOptions)
{
if (certificate is null)
{
throw new ArgumentNullException(nameof(certificate));
}
if (configureOptions is null)
{
throw new ArgumentNullException(nameof(configureOptions));
}
if (!certificate.HasPrivateKey)
{
TlsConnectionBuilderExtensions.ThrowNoPrivateKey(certificate, nameof(certificate));
}
return(builder.UseTls(options =>
{
options.LocalCertificate = certificate;
configureOptions(options);
}));
}
/// <summary>
/// Configures TLS.
/// </summary>
/// <param name="builder">The builder to configure.</param>
/// <param name="configureOptions">An Action to configure the <see cref="TlsOptions"/>.</param>
/// <returns>The builder.</returns>
public static IClientBuilder UseTls(
this IClientBuilder builder,
Action <TlsOptions> configureOptions)
{
if (configureOptions is null)
{
throw new ArgumentNullException(nameof(configureOptions));
}
var options = new TlsOptions();
configureOptions(options);
if (options.LocalCertificate is null && options.ClientCertificateMode == RemoteCertificateMode.RequireCertificate)
{
throw new InvalidOperationException("No certificate specified");
}
if (options.LocalCertificate is X509Certificate2 certificate && !certificate.HasPrivateKey)
{
TlsConnectionBuilderExtensions.ThrowNoPrivateKey(certificate, $"{nameof(TlsOptions)}.{nameof(TlsOptions.LocalCertificate)}");
}
return(builder.Configure <ClientConnectionOptions>(connectionOptions =>
{
connectionOptions.ConfigureConnection(connectionBuilder =>
{
connectionBuilder.UseClientTls(options);
});
}));
}
