浮雲雅築: [研究][C#][ASP.NET] 加簽寄信 (使用 MailKit 和 MimeKit)

[研究][C#][ASP.NET] 加簽寄信4 (使用 MailKit 和 MimeKit)

2019-10-13, 2020-01-21, 2021-11-29 更新
2022-06-06 Email憑證建議改用憑證序號抓

********************************************************************************
相關3篇

[研究][C#][ASP.NET] 加簽寄信 (使用 MailKit 和 MimeKit)
https://shaurong.blogspot.com/2019/10/caspnet-mailkit-mimekit_13.html

[研究][C#][ASP.NET] 寄信 (使用 MailKit 和 MimeKit)
https://shaurong.blogspot.com/2019/10/caspnet-mailkit-mimekit_11.html

[研究][C#][ASP.NET] 加簽寄信 (使用 System.Net.Mail.MailMessage)
https://shaurong.blogspot.com/2019/10/caspnet-systemnetmailmailmessage.html

更新補充一些資訊，更新到 2021-11-29

********************************************************************************

環境：Visual Studio 2019
NuGet 要安裝 MailKit 和 System.Data.SQLite

注意：certdb.sqlite 要加入方案中，deploy 才會出去。

Web.Config 部分

<?xml version="1.0" encoding="utf-8"?>
<configuration>
	<appSettings>
		<add key="EmailCertificateSN" value="郵件憑證序號" />
	</appSettings>
</configuration>

using MailKit.Net.Smtp;
using MailKit.Security;
using MimeKit;
using MimeKit.Cryptography;
using System;
using System.Data.SQLite;
using System.IO;
using System.Linq;
using System.Security.Cryptography.X509Certificates;

namespace WebApplication2
{
// http://www.mimekit.net/docs/html/Working-With-SMime.htm
public class MySecureMimeContext : DefaultSecureMimeContext
{
//public MySecureMimeContext()
// : base(OpenDatabase("C:\\wherever\\certdb.sqlite"))
//{}

// public MySecureMimeContext(): //base(OpenDatabase(@"C:\CodeTemp\WebApplication2\WebApplication2\certdb.sqlite"))
// {}

static string dbPath = HttpContext.Current.Server.MapPath("/App_Data/");
public MySecureMimeContext() : base(OpenDatabase(dbPath + "certdb.sqlite"))
{ }

static IX509CertificateDatabase OpenDatabase(string fileName)
{
var builder = new SQLiteConnectionStringBuilder();
builder.DateTimeFormat = SQLiteDateFormats.Ticks;
builder.DataSource = fileName;

if (!File.Exists(fileName))
SQLiteConnection.CreateFile(fileName);

var sqlite = new SQLiteConnection(builder.ConnectionString);
sqlite.Open();

return new SqliteCertificateDatabase(sqlite, "password");
}
}
public partial class Default : System.Web.UI.Page
{
protected void Page_Load(object sender, EventArgs e)
{

}

protected void Button1_Click(object sender, EventArgs e)
{
// http://www.mimekit.net/docs/html/Creating-Messages.htm
var message = new MimeMessage();
message.From.Add(new MailboxAddress("xxxx", "有申請憑證的@test.com"));
message.To.Add(new MailboxAddress("yyy", "yyy@mail2000.com.tw"));
message.Subject = "Mail2000 send Test (vis IIS SMTP localhost)";

message.Body = new TextPart("plain")
{
Text = @"Hey Alice,

What are you up to this weekend? Monica is throwing one of her parties on
Saturday and I was hoping you could make it.

Will you be my +1?

-- Joey
"
};

// http://www.mimekit.net/docs/html/Working-With-SMime.htm

// Note: by registering our custom context it becomes the default S/MIME context
// instantiated by MimeKit when methods such as Encrypt(), Decrypt(), Sign(), and
// Verify() are used without an explicit context.

CryptographyContext.Register(typeof(MySecureMimeContext));

X509Store store = new X509Store("My", StoreLocation.LocalMachine);

store.Open(OpenFlags.ReadOnly | OpenFlags.OpenExistingOnly);

//如果新舊憑證都尚未過期，會抓到舊的憑證
//X509Certificate2 signCert = store.Certificates.Find(X509FindType.FindBySubjectName, "憑證名稱", false)[0];

// 抓 Web.Config 中設定的Email憑證序號
setting = ConfigurationManager.AppSettings["EmailCertificateSN"];
string emailCertificateSN = setting.ToString();
//用 Email憑證序號抓比較不會抓錯
X509Certificate2 signCert = store.Certificates.Find(X509FindType.FindBySerialNumber, emailCertificateSN, false)[0];

// X509Certificate2 signCert = store.Certificates.Find(X509FindType.FindByThumbprint, "12339f33449f0cc767feb69e6dc2774ce10c1f60", false)[0];

// VS 2019 中正常，deploy 後執行，出現錯誤「機碼組不存在」
// 要用 MMC 設定 Email 憑證可讓 IIS_IUSRS 存取
CmsRecipient recipient = new CmsRecipient(signCert);

CmsRecipientCollection colle = new CmsRecipientCollection();
colle.Add(recipient);

using (var ctx = new MySecureMimeContext())
//using (var ctx = new TemporaryMimeContext())
{
// Note: this assumes that the Sender address has an S/MIME signing certificate
// and private key with an X.509 Subject Email identifier that matches the
// sender's email address.
var ctxsender = message.From.Mailboxes.FirstOrDefault();

CmsSigner signer = new CmsSigner(signCert);
message.Body = MultipartSigned.Create(ctx, signer, message.Body);
//var signed = MultipartSigned.Create(ctx, signer, message.Body);

//var encrypted = ApplicationPkcs7Mime.Encrypt(ctx, colle, signed);

//message.Body = MultipartSigned.Create(ctx, signer, encrypted);
//message.Body = MultipartSigned.Create(ctx, signer, signed);

// MimeKit.Cryptography.CertificateNotFoundException
// A valid signing certificate could not be found.
//message.Body = MultipartSigned.Create(ctx, ctxsender, DigestAlgorithm.Sha1, message.Body);
}

// http://www.mimekit.net/docs/html/M_MailKit_Net_Smtp_SmtpClient__ctor.htm
using (var client = new SmtpClient())
{
// IIS SMTP 要設定 None，Auto 會失敗
//client.Connect("localhost", 25, SecureSocketOptions.None);

client.Connect("localhost", 25, SecureSocketOptions.Auto);

//client.Authenticate("zzzz@gmail.com", "密碼");

try
{
//foreach (var message in messages)
//{
client.Send(message);
//}

client.Disconnect(true);
Label1.Text = "成功寄出。";
}
catch (Exception ex)
{
if (ex!=null)
{
Label1.Text = ex.Message.ToString();
}
else
{
Label1.Text = "不明錯誤。";
}
}
}
}
}
}

********************************************************************************
若出現錯誤：
無法加載 DLL「SQLite.Interop.DLL」: 找不到指定的模塊。 (異常來自 HRESULT:0x8007007E)。

********************************************************************************
若 deploy 程式碼失敗，出現錯誤

2020/1/21 下午 03:22:17
System.AggregateException: 發生一或多項錯誤。 ---> System.Exception: 建置失敗。如需詳細資料，請查看 [輸出] 視窗。
--- 內部例外狀況堆疊追蹤的結尾 ---
於 System.Threading.Tasks.Task.ThrowIfExceptional(Boolean includeTaskCanceledExceptions)
於 System.Threading.Tasks.Task.Wait(Int32 millisecondsTimeout, CancellationToken cancellationToken)
於 Microsoft.WebTools.Publish.PublishService.VsWebProjectPublish.<>c__DisplayClass43_0.<PublishAsync>b__3()
於 System.Threading.Tasks.Task`1.InnerInvoke()
於 System.Threading.Tasks.Task.Execute()
--- 先前擲回例外狀況之位置中的堆疊追蹤結尾 ---
於 System.Runtime.CompilerServices.TaskAwaiter.ThrowForNonSuccess(Task task)
於 System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
於 Microsoft.Publish.Framework.ViewModel.ProfileSelectorViewModel.<RunPublishTaskAsync>d__213.MoveNext()
---> (內部例外狀況 #0) System.Exception: 建置失敗。如需詳細資料，請查看 [輸出] 視窗。<---

System.Exception: 建置失敗。如需詳細資料，請查看 [輸出] 視窗。

===================

若要砍掉 SQLite.Interop.dll 失敗