kubernetes-client/csharp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

simplifying certificate chain handling

Browse Source
This commit is contained in:
Allan Targino
2017-08-24 19:05:35 -03:00
parent 720b7bd505
commit d1fde6d798
1 changed files with 4 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
src/Kubernetes.Auth.cs
View File

@@ -105,13 +105,12 @@
// If there are errors in the certificate chain, look at each error to determine the cause. // If there are errors in the certificate chain, look at each error to determine the cause.
if ((sslPolicyErrors & SslPolicyErrors.RemoteCertificateChainErrors) != 0) if ((sslPolicyErrors & SslPolicyErrors.RemoteCertificateChainErrors) != 0)
{ {
X509Chain chain0 = new X509Chain(); chain.ChainPolicy.RevocationMode = X509RevocationMode.NoCheck;
chain0.ChainPolicy.RevocationMode = X509RevocationMode.NoCheck;
// add all your extra certificate chain // add all your extra certificate chain
chain0.ChainPolicy.ExtraStore.Add(this.CaCert); chain.ChainPolicy.ExtraStore.Add(this.CaCert);
chain0.ChainPolicy.VerificationFlags = X509VerificationFlags.AllowUnknownCertificateAuthority; chain.ChainPolicy.VerificationFlags = X509VerificationFlags.AllowUnknownCertificateAuthority;
var isValid = chain0.Build((X509Certificate2)certificate); var isValid = chain.Build((X509Certificate2)certificate);
return isValid; return isValid;
} }
else else