Don't miss out Virtual Happy Hour this Friday (April 26).

Try our conversational search powered by Generative AI!

AI OnAI Off

Provide signing and encryption certificates

Fixed in

EPiServer.CloudPlatform.Cms 1.3.0

(Or a related package)

Created

May 12, 2022

Updated

Dec 15, 2022

Area

CMS Core

State

Closed, Acceptance tests pass

Description

Content Cloud provides signing and encryption certificates that the OpenID Connect library can use when an application is hosted in DXP and the Cloud Platform package is installed. The self-signed certificates are provisioned and renewed automatically in Azure Key Vault.

Available certificates:

  • oidc-encryption
  • oidc-signing

API:

services.AddCmsCloudPlatformSupport(_configuration);

var certificates = EPiServer.CloudPlatform.Cms.Certificates.CertificatesProvider.Get(_configuration);

services.AddOpenIDConnect<ApplicationUser>(
    useDevelopmentCertificate: false,
    certificates.SigningCertificate,
    certificates.EncryptionCertificate,
    createSchema: true);

See https://docs.developers.optimizely.com/content-cloud/v1.5.0-content-delivery-api/docs/api-authentication for more information.