When the dev-certs rotate, the exported PEM files for the SPA templates are not

[Tragetaschen]

Is there an existing issue for this?

• I have searched the existing issues

Describe the bug

After a year, my dev-certs were rotated automatically - great.

However, the PEM files exported by aspnetcore-https.js for the SPA proxy are not updated. The script only checks whether the files exist, not if they actually contain the valid/current dev-cert. This resulted in an "untrusted connection" message in the Browser and it was rather annoying to figure out what went wrong.

Expected Behavior

The SPA template infrastructure should pick up that the dev-certs rotated and rerun the export

Steps To Reproduce

• Rotate the dev-certs
• Notice that the exported *.pem and *.key files are not updated

Exceptions (if any)

No response

.NET Version

7.0.102

Anything else?

To fix this, I manually removed the pem and the key files from the …appdata/Roaming/ASP.NET/https/ folder, which were then regenerated with the new certificate on the next startup.

Thanks for contacting us.

We're moving this issue to the .NET 8 Planning milestone for future evaluation / consideration. We would like to keep this around to collect more feedback, which can help us with prioritizing this work. We will re-evaluate this issue, during our next planning meeting(s).
If we later determine, that the issue has no community involvement, or it's very rare and low-impact issue, we will close it - so that the team can focus on more important and high impact issues.
To learn more about what to expect next and how this issue will be handled you can read more about our triage process here.

[javiercn]

We probably want to add some logic here to check the current certificate.
https://github.com/dotnet/spa-templates/blob/main/src/content/React-CSharp/ClientApp/aspnetcore-https.js#L22

We might get away with something simple like re-running the tool if the file is longer than a certain amount of time (like 1h) to avoid having to load the certificate in node and inspect it.

[shiladitya-mukerji-22]

Hello @javiercn. I would like to work on this issue. Could you please assign the issue to me.

[shiladitya-mukerji-22]

@javiercn Please refer dotnet/spa-templates#132 to review PR.