csharp/tests/KubernetesClient.Tests/CertificateValidationTests.cs

using System;
using System.Collections.Generic;
using System.IO;
using System.Net.Security;
using System.Security.Cryptography.X509Certificates;
using Xunit;

namespace k8s.Tests
{
    public class CertificateValidationTests
    {
        [Fact]
        public void ValidCert()
        {
            var caCert = CertUtils.LoadPemFileCert("assets/ca.crt");
            var testCert = new X509Certificate2("assets/ca.crt");
            var chain = new X509Chain();
            var errors = SslPolicyErrors.RemoteCertificateChainErrors;

            var result = Kubernetes.CertificateValidationCallBack(this, caCert, testCert, chain, errors);

            Assert.True(result);
        }

        [Fact]
        public void InvalidCert()
        {
            var caCert = CertUtils.LoadPemFileCert("assets/ca.crt");
            var testCert = new X509Certificate2("assets/ca2.crt");
            var chain = new X509Chain();
            var errors = SslPolicyErrors.RemoteCertificateChainErrors;

            var result = Kubernetes.CertificateValidationCallBack(this, caCert, testCert, chain, errors);

            Assert.False(result);
        }

        [Fact]
        public void ValidBundleCert()
        {
            var caCert = CertUtils.LoadPemFileCert("assets/ca-bundle.crt");

            // Load the intermediate cert
            //
            var testCert = caCert[0];
            var chain = new X509Chain();
            var errors = SslPolicyErrors.RemoteCertificateChainErrors;

            var result = Kubernetes.CertificateValidationCallBack(this, caCert, testCert, chain, errors);

            Assert.True(result);
        }

        [Fact]
        public void InvalidBundleCert()
        {
            var caCert = CertUtils.LoadPemFileCert("assets/ca-bundle.crt");
            var testCert = new X509Certificate2("assets/ca2.crt");
            var chain = new X509Chain();
            var errors = SslPolicyErrors.RemoteCertificateChainErrors;

            var result = Kubernetes.CertificateValidationCallBack(this, caCert, testCert, chain, errors);

            Assert.False(result);
        }
    }
}
Fix issue with X509VerificationFlags.AllowUnknownCertificateAuthority behavior (#174) * Fix issue with X509VerificationFlags.AllowUnknownCertificateAuthority behavior * Add CertificateValidationTests 2018-06-13 21:55:41 +04:00			`using System;`
Add bundle certificate support (#253) * initial * add some comments * cleanup * var * Use X509Certificate2cCollection * add missing asset files * address comments 2019-03-11 06:39:28 -07:00			`using System.Collections.Generic;`
Fix issue with X509VerificationFlags.AllowUnknownCertificateAuthority behavior (#174) * Fix issue with X509VerificationFlags.AllowUnknownCertificateAuthority behavior * Add CertificateValidationTests 2018-06-13 21:55:41 +04:00			`using System.IO;`
			`using System.Net.Security;`
			`using System.Security.Cryptography.X509Certificates;`
			`using Xunit;`

Update tests namespaces for consistency (#191) 2018-07-09 23:52:17 +10:00			`namespace k8s.Tests`
Fix issue with X509VerificationFlags.AllowUnknownCertificateAuthority behavior (#174) * Fix issue with X509VerificationFlags.AllowUnknownCertificateAuthority behavior * Add CertificateValidationTests 2018-06-13 21:55:41 +04:00			`{`
			`public class CertificateValidationTests`
			`{`
			`[Fact]`
			`public void ValidCert()`
			`{`
Add bundle certificate support (#253) * initial * add some comments * cleanup * var * Use X509Certificate2cCollection * add missing asset files * address comments 2019-03-11 06:39:28 -07:00			`var caCert = CertUtils.LoadPemFileCert("assets/ca.crt");`
Fix issue with X509VerificationFlags.AllowUnknownCertificateAuthority behavior (#174) * Fix issue with X509VerificationFlags.AllowUnknownCertificateAuthority behavior * Add CertificateValidationTests 2018-06-13 21:55:41 +04:00			`var testCert = new X509Certificate2("assets/ca.crt");`
			`var chain = new X509Chain();`
			`var errors = SslPolicyErrors.RemoteCertificateChainErrors;`

			`var result = Kubernetes.CertificateValidationCallBack(this, caCert, testCert, chain, errors);`

			`Assert.True(result);`
			`}`

			`[Fact]`
			`public void InvalidCert()`
			`{`
Add bundle certificate support (#253) * initial * add some comments * cleanup * var * Use X509Certificate2cCollection * add missing asset files * address comments 2019-03-11 06:39:28 -07:00			`var caCert = CertUtils.LoadPemFileCert("assets/ca.crt");`
			`var testCert = new X509Certificate2("assets/ca2.crt");`
			`var chain = new X509Chain();`
			`var errors = SslPolicyErrors.RemoteCertificateChainErrors;`

			`var result = Kubernetes.CertificateValidationCallBack(this, caCert, testCert, chain, errors);`

			`Assert.False(result);`
			`}`

			`[Fact]`
			`public void ValidBundleCert()`
			`{`
			`var caCert = CertUtils.LoadPemFileCert("assets/ca-bundle.crt");`

			`// Load the intermediate cert`
			`//`
			`var testCert = caCert[0];`
			`var chain = new X509Chain();`
			`var errors = SslPolicyErrors.RemoteCertificateChainErrors;`

			`var result = Kubernetes.CertificateValidationCallBack(this, caCert, testCert, chain, errors);`

			`Assert.True(result);`
			`}`

			`[Fact]`
			`public void InvalidBundleCert()`
			`{`
			`var caCert = CertUtils.LoadPemFileCert("assets/ca-bundle.crt");`
Fix issue with X509VerificationFlags.AllowUnknownCertificateAuthority behavior (#174) * Fix issue with X509VerificationFlags.AllowUnknownCertificateAuthority behavior * Add CertificateValidationTests 2018-06-13 21:55:41 +04:00			`var testCert = new X509Certificate2("assets/ca2.crt");`
			`var chain = new X509Chain();`
			`var errors = SslPolicyErrors.RemoteCertificateChainErrors;`

			`var result = Kubernetes.CertificateValidationCallBack(this, caCert, testCert, chain, errors);`

			`Assert.False(result);`
			`}`
			`}`
			`}`