Соединение SSL не может быть установлено, см. Внутреннее исключение. Проблема Docker ⇐ C#

[Гость]

Ошибка ручной работы SSL в Docker: ssl_error_ssl с .net 8 и openssl

проблема
Я запускаю приложение .NET 8 в среде Windows + Visual Studio , и все работает нормально. Однако, когда я запускаю его в контейнере docker , я получаю следующую ошибку при выполнении запроса HTTPS с сертификатом клиента:
dockerfile < /h4>
[code]FROM mcr.microsoft.com/dotnet/aspnet:8.0 AS base
USER root
RUN apt-get update && apt-get install -y ca-certificates

COPY ["InsuranceApi/sosMedecin.crt", "/usr/local/share/ca-certificates/sosMedecin.crt"]
RUN update-ca-certificates

USER $APP_UID
WORKDIR /app
EXPOSE 8080
EXPOSE 8081

FROM mcr.microsoft.com/dotnet/sdk:8.0 AS build
ARG BUILD_CONFIGURATION=Release
WORKDIR /src

COPY ["InsuranceApi/InsuranceApi.csproj", "InsuranceApi/"]
RUN dotnet restore "./InsuranceApi/InsuranceApi.csproj"
COPY . .
WORKDIR "/src/InsuranceApi"
RUN dotnet build "./InsuranceApi.csproj" -c $BUILD_CONFIGURATION -o /app/build

FROM build AS publish
ARG BUILD_CONFIGURATION=Release
RUN dotnet publish "./InsuranceApi.csproj" -c $BUILD_CONFIGURATION -o /app/publish /p:UseAppHost=false

FROM base AS final
WORKDIR /app

COPY --from=publish /app/publish .
COPY ["InsuranceApi/sosMedecin.pfx", "/app/publish/sosMedecin.pfx"]

ENTRYPOINT ["dotnet", "InsuranceApi.dll"]
[/code]
authenticationservice.cs[/b]

Код: Выделить всё

public class AuthenticationService
{
private readonly CertificateOptions _certificateOptions;
private readonly SsoOptions _ssoOptions;

public AuthenticationService(IOptions certificateOptions, IOptions ssoOptions)
{
_certificateOptions = certificateOptions.Value;
_ssoOptions = ssoOptions.Value;
}

public async Task GetSsoToken()
{
string? ssoToken = null;
HttpClientHandler handler = new HttpClientHandler();

try
{
// Adding client certificate to HttpClientHandler
handler.ClientCertificates.Add(new X509Certificate2(_certificateOptions.CertificatePath, _certificateOptions.CertificatePassword));

// Making the HTTP request to get the SSO token
using (var client = new HttpClient(handler))
{
var content = new FormUrlEncodedContent(new[]
{
new KeyValuePair("format", "text"),
new KeyValuePair("username", _ssoOptions.Username),
new KeyValuePair("password", _ssoOptions.Password),
new KeyValuePair("submit", "confirm")
});

HttpResponseMessage response = await client.PostAsync(_ssoOptions.SsoTokenUrl, content);

// If response contains the SSO token cookie
if (response.Headers.Contains("Set-Cookie"))
{
var cookieHeader = response.Headers
.GetValues("Set-Cookie")
.FirstOrDefault(c => c.StartsWith("SSOV2"));

if (!string.IsNullOrEmpty(cookieHeader))
{
ssoToken = cookieHeader.Split(';')[0].Split('=')[1];
}
else
{
throw new ArgumentNullException("Cookie with SSO token was not found.");
}
}
else
{
throw new ArgumentNullException($"SSO token not found in response.\nResponse: {await response.Content.ReadAsStringAsync()}");
}
}
}
catch (Exception ex)
{
// Log any errors and inner exceptions
Console.WriteLine($"Unexpected error: {ex.Message}");
while (ex.InnerException != null)
{
Console.WriteLine($"Inner Exception: {ex.InnerException.Message}");
ex = ex.InnerException;
}
throw;
}

return ssoToken;
}
}

Я попытался добавить сертификат вручную в Dockerfile, используя обновление-CA-сертификаты, но он не решил проблему.


Подробнее здесь: https://stackoverflow.com/questions/794 ... er-problem