Reputation: 757
how to use System.Web.Security.MachineKey.Unprotect to decrypt ciphertext between different server
My asp.net site has two server for load balance. I found that if the authentication cookie(.AspNet.Application) were encrypted by the server 1, then it can't be decrypt by server 2. I have already set the machiekey of the two servers to the same value. In addition, I found that System.Web.Security.MachineKey.Unprotect method can't decrypt ciphertext which was encrypt by another server that has the same machinekey. However, it works well in the same server. The site used web form technology before, but now it used web form+mvc in one solution. my encrypt code fragment as below:
var bytes = System.Web.Security.MachineKey.Protect(Encoding.UTF8.GetBytes("abcd1234"),
"M", "A", "v1");
this.textBox2.Text = Convert.ToBase64String(bytes);
decrypt code fragment as below:
var bytes = System.Web.Security.MachineKey.Unprotect(Convert.FromBase64String(this.textBox2.Text),
"M", "A", "v1");
this.textBox1.Text = Encoding.UTF8.GetString(bytes);
Could anyone help me please? Thank you very much!
Upvotes: 0
Views: 3467
Answers (1)
Reputation: 632
could you put machinekey in web.config, like
<system.web>
<compilation debug="true" targetFramework="4.6"/>
<httpRuntime targetFramework="4.6"/>
<machineKey
validationKey="your validationKey"
decryptionKey="your decryptionKey"
validation="SHA1"
decryption="AES"
/>
</system.web>
Upvotes: 3
Related Questions
- Encrypt and decrypt with MachineKey in C#
- Encypting on one server and decrypting on another using .NET
- Use MachineKey.Protect Outside of ASP.NET
- MVC AntiForgeryToken machinekey for encryption
- Encryption with MachineKey is not persistent
- MachineKey.Protect and MachineKey.Unprotect
- ASP Website does not seem to use machineKey in Web.Config for FormsAuthentication.Decrypt
- How to use System.Web.Security.MachineKey protect and unprotect across network
- ASP.net MachineKey.Encode Changing Machine Key
- Leveraging ASP.NET machineKey For Encrypting My Own Data