Hello! I am just starting to use Openziti. I need implement it for a login of an app in C#. How is the best way to handle the certificates. Just leave inside the app a certificate(I am scared of someone stealing it and using it but i dont know how hard it is)? I saw somewhere i can make the certificates temporary in the controller config file but i dont know how. And it said something about the sdk when it loads the json it checks if it expired and dowloads and use a new one. I dont know if its true. What is the best way to handle this. I am complete beginner at this stuff.
Hi @defalt999, welcome to the community and to OpenZiti!
This is more of a “c# question” i think, rather than an OpenZiti question? Certificates are public information so they really aren’t a problem, I’m not exactly sure what you’re asking tbh.
As for an identity file, maybe that’s what you’re asking about. The act of enroll an identity will create an identity file. That identity file will have a key in it that is private and should be kept safe. You’d keep this file somewhere safe using filesystem permissions. If you’re making an app, then I’d probably end up storing it in the user’s APPDATA. I’d also try to make sure only that user had access to the file.