Skip to content

Add strategy for storing ACME site certificate in OS X.509 store.#45

Merged
jjrdk merged 1 commit intomasterfrom
features/certstore
Apr 12, 2026
Merged

Add strategy for storing ACME site certificate in OS X.509 store.#45
jjrdk merged 1 commit intomasterfrom
features/certstore

Conversation

@jjrdk
Copy link
Copy Markdown
Owner

@jjrdk jjrdk commented Apr 12, 2026

Use OS cert store for storing certificates

Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Adds an OS X.509 certificate-store–backed persistence option for the ACME site certificate (including private key), updates the persistence pipeline to use a new “persist full site cert” strategy API, and introduces integration tests validating OS-store behavior.

Changes:

  • Added CertificateStorePersistenceStrategy for storing/retrieving the site certificate from the OS X.509 store.
  • Extended ICertificatePersistenceStrategy with PersistSiteCertificate(X509Certificate2) and updated PersistenceService to use it.
  • Added integration tests covering OS-store persistence, cleanup, and selection behavior.

Reviewed changes

Copilot reviewed 6 out of 6 changed files in this pull request and generated 3 comments.

Show a summary per file
File Description
tests/opencertserver.acme.aspnetclient.tests/SelfSignedCertificate.cs Adds helper for generating self-signed certs with a custom subject for store-based tests.
tests/opencertserver.acme.aspnetclient.tests/CertificateStorePersistenceTests.cs New integration tests for OS certificate store persistence behavior.
src/opencertserver.acme.aspnetclient/RegistrationExtensions.cs Adds DI registration extension for OS-store persistence strategy.
src/opencertserver.acme.aspnetclient/Persistence/PersistenceService.cs Switches site-certificate persistence to call strategy PersistSiteCertificate(...).
src/opencertserver.acme.aspnetclient/Persistence/ICertificatePersistenceStrategy.cs Adds default interface method PersistSiteCertificate(...) for full-cert persistence.
src/opencertserver.acme.aspnetclient/Persistence/CertificateStorePersistenceStrategy.cs New strategy implementing OS-store persistence/retrieval for the site certificate.

@jjrdk jjrdk merged commit c2aed69 into master Apr 12, 2026
11 checks passed
@jjrdk jjrdk deleted the features/certstore branch April 12, 2026 21:40
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants