csharp/tests/KubernetesClient.Tests/CertUtilsTests.cs

using System;
using System.Linq;
using System.Security.Cryptography.X509Certificates;
using Xunit;

namespace k8s.Tests
{
    public class CertUtilsTests
    {
        /// <summary>
        /// This file contains a sample kubeconfig file. The paths to the certificate files are relative
        /// to the current working directly.
        /// </summary>
        private const string KubeConfigFileName = "assets/kubeconfig.yml";

        /// <summary>
        /// This file contains a sample kubeconfig file. The paths to the certificate files are relative
        /// to the directory in which the kubeconfig file is located.
        /// </summary>
        private const string KubeConfigWithRelativePathsFileName = "assets/kubeconfig.relative.yml";

        /// <summary>
        /// Checks that a certificate can be loaded from files.
        /// </summary>
        [Fact]
        public void LoadFromFiles()
        {
            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(KubeConfigFileName, "federal-context",
                useRelativePaths: false);

            // Just validate that this doesn't throw and private key is non-null
            using var cert = CertUtils.GeneratePfx(cfg);
            Assert.NotNull(cert.GetRSAPrivateKey());
        }

        /// <summary>
        /// Checks that a certificate can be loaded from files, in a scenario where the files are using relative paths.
        /// </summary>
        [Fact]
        public void LoadFromFilesRelativePath()
        {
            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(
                KubeConfigWithRelativePathsFileName,
                "federal-context");

            // Just validate that this doesn't throw and private key is non-null
            using var cert = CertUtils.GeneratePfx(cfg);
            Assert.NotNull(cert.GetRSAPrivateKey());
        }

        /// <summary>
        /// Checks that a certificate can be loaded from inline.
        /// </summary>
        [Fact]
        public void LoadFromInlineData()
        {
            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(KubeConfigFileName, "victorian-context",
                useRelativePaths: false);

            // Just validate that this doesn't throw and private key is non-null
            using var cert = CertUtils.GeneratePfx(cfg);
            Assert.NotNull(cert.GetRSAPrivateKey());
        }

        /// <summary>
        /// Checks that a certificate can be loaded from inline, in a scenario where the files are using relative paths..
        /// </summary>
        [Fact]
        public void LoadFromInlineDataRelativePath()
        {
            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(
                KubeConfigWithRelativePathsFileName,
                "victorian-context");

            // Just validate that this doesn't throw and private key is non-null
            using var cert = CertUtils.GeneratePfx(cfg);
            Assert.NotNull(cert.GetRSAPrivateKey());
        }

        /// <summary>
        /// Checks that the bundle certificate was loaded correctly
        /// </summary>
        [Fact]
        public void LoadPemWithMultiCert()
        {
            var certCollection = CertUtils.LoadPemFileCert("assets/ca-bundle.crt");

#if NET9_0_OR_GREATER
            using var intermediateCert = X509CertificateLoader.LoadCertificateFromFile("assets/ca-bundle-intermediate.crt");
            using var rootCert = X509CertificateLoader.LoadCertificateFromFile("assets/ca-bundle-root.crt");
#else
            using var intermediateCert = new X509Certificate2("assets/ca-bundle-intermediate.crt");
            using var rootCert = new X509Certificate2("assets/ca-bundle-root.crt");
#endif

            Assert.Equal(2, certCollection.Count);

            Assert.True(certCollection[0].RawData.SequenceEqual(intermediateCert.RawData));
            Assert.True(certCollection[1].RawData.SequenceEqual(rootCert.RawData));
        }
    }
}
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00			`using System;`
Add bundle certificate support (#253) * initial * add some comments * cleanup * var * Use X509Certificate2cCollection * add missing asset files * address comments 2019-03-11 06:39:28 -07:00			`using System.Linq;`
Fix some compilation warnings (#1010) * Fixe some summary warning * Fixed more warning * Uniformed example projects code * Uniformed test projects code * Fix OperatingSystems enum and GenericType summaries 2022-09-16 01:21:21 +02:00			`using System.Security.Cryptography.X509Certificates;`
			`using Xunit;`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00
			`namespace k8s.Tests`
			`{`
			`public class CertUtilsTests`
			`{`
			`/// <summary>`
Support relative paths in Kubernetes configuration files (#141) * Support relative paths in Kubernetes configuration files * Filename -> FileName * Filename -> FileName * KuberentesClientConfiguration: Allow the user to opt-out of the mechanism which resolves relative paths in the configuration file. * Update unit tests * Fix test 2018-04-27 06:13:48 +02:00			`/// This file contains a sample kubeconfig file. The paths to the certificate files are relative`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00			`/// to the current working directly.`
			`/// </summary>`
stylecop fix followup, enforce SA1503 (#432) * enforce SA1503 * fix spacing * fix SA1413 * fix spacing * fix SA1013 2020-04-23 11:40:06 -07:00			`private const string KubeConfigFileName = "assets/kubeconfig.yml";`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00
			`/// <summary>`
Support relative paths in Kubernetes configuration files (#141) * Support relative paths in Kubernetes configuration files * Filename -> FileName * Filename -> FileName * KuberentesClientConfiguration: Allow the user to opt-out of the mechanism which resolves relative paths in the configuration file. * Update unit tests * Fix test 2018-04-27 06:13:48 +02:00			`/// This file contains a sample kubeconfig file. The paths to the certificate files are relative`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00			`/// to the directory in which the kubeconfig file is located.`
			`/// </summary>`
stylecop fix followup, enforce SA1503 (#432) * enforce SA1503 * fix spacing * fix SA1413 * fix spacing * fix SA1013 2020-04-23 11:40:06 -07:00			`private const string KubeConfigWithRelativePathsFileName = "assets/kubeconfig.relative.yml";`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00
			`/// <summary>`
			`/// Checks that a certificate can be loaded from files.`
			`/// </summary>`
			`[Fact]`
			`public void LoadFromFiles()`
			`{`
stylecop fix followup, enforce SA1503 (#432) * enforce SA1503 * fix spacing * fix SA1413 * fix spacing * fix SA1013 2020-04-23 11:40:06 -07:00			`var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(KubeConfigFileName, "federal-context",`
			`useRelativePaths: false);`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00
			`// Just validate that this doesn't throw and private key is non-null`
Dispose certificates in `Kubernetes.Dispose()` (#1191) * Dispose certs created by Kuberentes * Update tests 2023-02-01 15:47:29 -08:00			`using var cert = CertUtils.GeneratePfx(cfg);`
fix build warning (#786) 2022-02-25 13:35:22 -08:00			`Assert.NotNull(cert.GetRSAPrivateKey());`
Support relative paths in Kubernetes configuration files (#141) * Support relative paths in Kubernetes configuration files * Filename -> FileName * Filename -> FileName * KuberentesClientConfiguration: Allow the user to opt-out of the mechanism which resolves relative paths in the configuration file. * Update unit tests * Fix test 2018-04-27 06:13:48 +02:00			`}`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00
			`/// <summary>`
			`/// Checks that a certificate can be loaded from files, in a scenario where the files are using relative paths.`
			`/// </summary>`
			`[Fact]`
Support relative paths in Kubernetes configuration files (#141) * Support relative paths in Kubernetes configuration files * Filename -> FileName * Filename -> FileName * KuberentesClientConfiguration: Allow the user to opt-out of the mechanism which resolves relative paths in the configuration file. * Update unit tests * Fix test 2018-04-27 06:13:48 +02:00			`public void LoadFromFilesRelativePath()`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00			`{`
Style fix1 (#512) * fix SA1505 and SA1508 * fix SA1116 * fix SA1009 * fix SA1019 * fix SA1127 * fix SA1128 * fix SA1134 * fix indent * allow CA2227 * fix CA1810 * using clean up * fix naming * fix CA1806 * fix await * Revert "fix CA1806" This reverts commit a3b465087fdaf26ec461272373ee9810a90de2cc. * fix dotnet format * allow SA1009 2020-11-01 12:24:51 -08:00			`var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(`
			`KubeConfigWithRelativePathsFileName,`
stylecop fix followup, enforce SA1503 (#432) * enforce SA1503 * fix spacing * fix SA1413 * fix spacing * fix SA1013 2020-04-23 11:40:06 -07:00			`"federal-context");`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00
			`// Just validate that this doesn't throw and private key is non-null`
Dispose certificates in `Kubernetes.Dispose()` (#1191) * Dispose certs created by Kuberentes * Update tests 2023-02-01 15:47:29 -08:00			`using var cert = CertUtils.GeneratePfx(cfg);`
fix build warning (#786) 2022-02-25 13:35:22 -08:00			`Assert.NotNull(cert.GetRSAPrivateKey());`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00			`}`

			`/// <summary>`
			`/// Checks that a certificate can be loaded from inline.`
			`/// </summary>`
			`[Fact]`
			`public void LoadFromInlineData()`
			`{`
stylecop fix followup, enforce SA1503 (#432) * enforce SA1503 * fix spacing * fix SA1413 * fix spacing * fix SA1013 2020-04-23 11:40:06 -07:00			`var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(KubeConfigFileName, "victorian-context",`
			`useRelativePaths: false);`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00
			`// Just validate that this doesn't throw and private key is non-null`
Dispose certificates in `Kubernetes.Dispose()` (#1191) * Dispose certs created by Kuberentes * Update tests 2023-02-01 15:47:29 -08:00			`using var cert = CertUtils.GeneratePfx(cfg);`
fix build warning (#786) 2022-02-25 13:35:22 -08:00			`Assert.NotNull(cert.GetRSAPrivateKey());`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00			`}`

			`/// <summary>`
			`/// Checks that a certificate can be loaded from inline, in a scenario where the files are using relative paths..`
			`/// </summary>`
			`[Fact]`
Support relative paths in Kubernetes configuration files (#141) * Support relative paths in Kubernetes configuration files * Filename -> FileName * Filename -> FileName * KuberentesClientConfiguration: Allow the user to opt-out of the mechanism which resolves relative paths in the configuration file. * Update unit tests * Fix test 2018-04-27 06:13:48 +02:00			`public void LoadFromInlineDataRelativePath()`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00			`{`
Style fix1 (#512) * fix SA1505 and SA1508 * fix SA1116 * fix SA1009 * fix SA1019 * fix SA1127 * fix SA1128 * fix SA1134 * fix indent * allow CA2227 * fix CA1810 * using clean up * fix naming * fix CA1806 * fix await * Revert "fix CA1806" This reverts commit a3b465087fdaf26ec461272373ee9810a90de2cc. * fix dotnet format * allow SA1009 2020-11-01 12:24:51 -08:00			`var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(`
			`KubeConfigWithRelativePathsFileName,`
stylecop fix followup, enforce SA1503 (#432) * enforce SA1503 * fix spacing * fix SA1413 * fix spacing * fix SA1013 2020-04-23 11:40:06 -07:00			`"victorian-context");`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00
			`// Just validate that this doesn't throw and private key is non-null`
Dispose certificates in `Kubernetes.Dispose()` (#1191) * Dispose certs created by Kuberentes * Update tests 2023-02-01 15:47:29 -08:00			`using var cert = CertUtils.GeneratePfx(cfg);`
fix build warning (#786) 2022-02-25 13:35:22 -08:00			`Assert.NotNull(cert.GetRSAPrivateKey());`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00			`}`
pretend to support chain (#245) 2019-02-15 11:57:24 -08:00
			`/// <summary>`
Add bundle certificate support (#253) * initial * add some comments * cleanup * var * Use X509Certificate2cCollection * add missing asset files * address comments 2019-03-11 06:39:28 -07:00			`/// Checks that the bundle certificate was loaded correctly`
pretend to support chain (#245) 2019-02-15 11:57:24 -08:00			`/// </summary>`
			`[Fact]`
			`public void LoadPemWithMultiCert()`
			`{`
Add bundle certificate support (#253) * initial * add some comments * cleanup * var * Use X509Certificate2cCollection * add missing asset files * address comments 2019-03-11 06:39:28 -07:00			`var certCollection = CertUtils.LoadPemFileCert("assets/ca-bundle.crt");`

generate base on 1.34 (#1654) * Implement code changes to enhance functionality and improve performance * chore: update version to 18.0 in version.json * fix: correct initialization of opblackList in PluralHelper * chore: update SDK version to 18.0 in README.md * Fixdocfx (#82) * fix: update file references and clean up validation comments in models * chore: add symlink to CONTRIBUTING.md for easier access * fix: update documentation to include full type names for WebSocket and Predicate * fix: include CONTRIBUTING.md in docfx.json build content * refactor: update IKubernetes interface and template for consistency * feat: add Microsoft.CodeAnalysis.CSharp package and improve source normalization in generator context * chore: update package versions in Directory.Packages.props for compatibility and improvements * chore: update Microsoft.VisualStudio.SlnGen and Nerdbank.GitVersioning package versions for compatibility * Implement code changes to enhance functionality and improve performance * chore: update version to 18.0 in version.json * fix: correct initialization of opblackList in PluralHelper * chore: update SDK version to 18.0 in README.md * refactor: update IKubernetes interface and template for consistency * feat: add Microsoft.CodeAnalysis.CSharp package and improve source normalization in generator context * chore: update package versions in Directory.Packages.props for compatibility and improvements * chore: update Microsoft.VisualStudio.SlnGen and Nerdbank.GitVersioning package versions for compatibility * chore: downgrade xunit.runner.visualstudio and Xunit.StaFact package versions for compatibility * chore: update package versions in Directory.Packages.props for compatibility and improvements * style: format code for consistency and readability * feat: update certificate loading logic for .NET 9 compatibility * fix: update certificate loading method for .NET 9 compatibility 2025-09-22 14:18:16 -07:00			`#if NET9_0_OR_GREATER`
			`using var intermediateCert = X509CertificateLoader.LoadCertificateFromFile("assets/ca-bundle-intermediate.crt");`
			`using var rootCert = X509CertificateLoader.LoadCertificateFromFile("assets/ca-bundle-root.crt");`
			`#else`
Dispose certificates in `Kubernetes.Dispose()` (#1191) * Dispose certs created by Kuberentes * Update tests 2023-02-01 15:47:29 -08:00			`using var intermediateCert = new X509Certificate2("assets/ca-bundle-intermediate.crt");`
			`using var rootCert = new X509Certificate2("assets/ca-bundle-root.crt");`
generate base on 1.34 (#1654) * Implement code changes to enhance functionality and improve performance * chore: update version to 18.0 in version.json * fix: correct initialization of opblackList in PluralHelper * chore: update SDK version to 18.0 in README.md * Fixdocfx (#82) * fix: update file references and clean up validation comments in models * chore: add symlink to CONTRIBUTING.md for easier access * fix: update documentation to include full type names for WebSocket and Predicate * fix: include CONTRIBUTING.md in docfx.json build content * refactor: update IKubernetes interface and template for consistency * feat: add Microsoft.CodeAnalysis.CSharp package and improve source normalization in generator context * chore: update package versions in Directory.Packages.props for compatibility and improvements * chore: update Microsoft.VisualStudio.SlnGen and Nerdbank.GitVersioning package versions for compatibility * Implement code changes to enhance functionality and improve performance * chore: update version to 18.0 in version.json * fix: correct initialization of opblackList in PluralHelper * chore: update SDK version to 18.0 in README.md * refactor: update IKubernetes interface and template for consistency * feat: add Microsoft.CodeAnalysis.CSharp package and improve source normalization in generator context * chore: update package versions in Directory.Packages.props for compatibility and improvements * chore: update Microsoft.VisualStudio.SlnGen and Nerdbank.GitVersioning package versions for compatibility * chore: downgrade xunit.runner.visualstudio and Xunit.StaFact package versions for compatibility * chore: update package versions in Directory.Packages.props for compatibility and improvements * style: format code for consistency and readability * feat: update certificate loading logic for .NET 9 compatibility * fix: update certificate loading method for .NET 9 compatibility 2025-09-22 14:18:16 -07:00			`#endif`
Add bundle certificate support (#253) * initial * add some comments * cleanup * var * Use X509Certificate2cCollection * add missing asset files * address comments 2019-03-11 06:39:28 -07:00
			`Assert.Equal(2, certCollection.Count);`

			`Assert.True(certCollection[0].RawData.SequenceEqual(intermediateCert.RawData));`
			`Assert.True(certCollection[1].RawData.SequenceEqual(rootCert.RawData));`
pretend to support chain (#245) 2019-02-15 11:57:24 -08:00			`}`
align files to .editorconfig (#203) * align files to .editorconfig * fix space cause build failed 2018-09-27 10:50:39 -07:00			`}`
cleanup unused code and functions and fix unittest naming style 2017-11-08 14:22:10 +08:00			`}`