Cutlery/Kyoo
1
0
Fork 0
mirror of https://github.com/zoriya/Kyoo.git synced 2025-05-24 02:02:36 -04:00
Code Issues Packages Projects Releases Wiki Activity

Add support for loading multiple root CAs from the specified CA file

Browse Source 
Signed-off-by: solidDoWant <fred.heinecke@yahoo.com>
This commit is contained in:
solidDoWant 2025-04-27 09:35:47 +00:00 committed by Zoe Roux
parent 79ee70a1a2
commit 7193b5a2a2
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
back/src/Kyoo.RabbitMq/RabbitMqModule.cs
View File

@ -96,7 +96,8 @@ public static class RabbitMqModule
if (!string.IsNullOrEmpty(caCertFile))
{
// Load the cert once at startup instead of on every connection.
X509Certificate2 rootCA = new(caCertFile);
X509Certificate2Collection rootCACollection = [];
rootCACollection.ImportFromPemFile(caCertFile);
// This is a custom validator that obeys the set SslPolicyErrors, while also using the CA cert specified in the query string.
factory.Ssl.CertificateValidationCallback = (
@ -144,7 +145,7 @@ public static class RabbitMqModule
);
chain.ChainPolicy.CustomTrustStore.Clear();
chain.ChainPolicy.TrustMode = X509ChainTrustMode.CustomRootTrust;
chain.ChainPolicy.CustomTrustStore.Add(rootCA);
chain.ChainPolicy.CustomTrustStore.AddRange(rootCACollection);
return chain.Build(new X509Certificate2(certificate));
};