diff --git a/configuration/encryption-and-signing-credentials.html b/configuration/encryption-and-signing-credentials.html index 5770961..20ab062 100644 --- a/configuration/encryption-and-signing-credentials.html +++ b/configuration/encryption-and-signing-credentials.html @@ -132,18 +132,28 @@ Certificates can be generated and self-signed locally using the .NET Core
using var algorithm = RSA.Create(keySizeInBits: 2048);
 
 var subject = new X500DistinguishedName("CN=Fabrikam Encryption Certificate");
-var request = new CertificateRequest(subject, algorithm, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
-request.CertificateExtensions.Add(new X509KeyUsageExtension(X509KeyUsageFlags.KeyEncipherment, critical: true));
+var request = new CertificateRequest(subject, algorithm,
+    HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
+request.CertificateExtensions.Add(new X509KeyUsageExtension(
+    X509KeyUsageFlags.KeyEncipherment, critical: true));
+
+var certificate = request.CreateSelfSigned(
+    DateTimeOffset.UtcNow,
+    DateTimeOffset.UtcNow.AddYears(2));
 
-var certificate = request.CreateSelfSigned(DateTimeOffset.UtcNow, DateTimeOffset.UtcNow.AddYears(2));
 var data = certificate.Export(X509ContentType.Pfx, string.Empty);
 
using var algorithm = RSA.Create(keySizeInBits: 2048);
 
 var subject = new X500DistinguishedName("CN=Fabrikam Signing Certificate");
-var request = new CertificateRequest(subject, algorithm, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
-request.CertificateExtensions.Add(new X509KeyUsageExtension(X509KeyUsageFlags.DigitalSignature, critical: true));
+var request = new CertificateRequest(subject, algorithm,
+    HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
+request.CertificateExtensions.Add(new X509KeyUsageExtension(
+    X509KeyUsageFlags.DigitalSignature, critical: true));
+
+var certificate = request.CreateSelfSigned(
+    DateTimeOffset.UtcNow,
+    DateTimeOffset.UtcNow.AddYears(2));
 
-var certificate = request.CreateSelfSigned(DateTimeOffset.UtcNow, DateTimeOffset.UtcNow.AddYears(2));
 var data = certificate.Export(X509ContentType.Pfx, string.Empty);
 

The best place to store your certificates will mostly depend on your host: