See if we can specify the validation date for the certificates (#28)

duosecurity · May 3, 2023 · 5c6b376 · 5c6b376
1 parent e44da7a
commit 5c6b376
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/test/CertPinningTest.cs b/test/CertPinningTest.cs
@@ -22,6 +22,8 @@ protected static X509Chain DuoApiChain()
     {
         // The certificate chain for api-*.duosecurity.com
         var chain = new X509Chain();
+        // Verify as of a date that the certs are valid for
+        chain.ChainPolicy.VerificationTime = new DateTime(2023, 01, 01);
         chain.ChainPolicy.ExtraStore.Add(CertFromString(DUO_API_CERT_ROOT));
         chain.ChainPolicy.ExtraStore.Add(CertFromString(DUO_API_CERT_INTER));
         bool valid = chain.Build(DuoApiServerCert());
@@ -33,6 +35,8 @@ protected static X509Chain MicrosoftComChain()
     {
         // A valid chain, but for www.microsoft.com, not Duo
         var chain = new X509Chain();
+        // Verify as of a date that the certs are valid for
+        chain.ChainPolicy.VerificationTime = new DateTime(2023, 01, 01);
         chain.ChainPolicy.ExtraStore.Add(CertFromString(MICROSOFT_COM_CERT_ROOT));
         chain.ChainPolicy.ExtraStore.Add(CertFromString(MICROSOFT_COM_CERT_INTER));
         bool valid = chain.Build(CertFromString(MICROSOFT_COM_CERT_SERVER));