Don't use ServerCertificateCustomValidationCallback when no CA is set

kubernetes-client · Apr 13, 2023 · 990db89 · 990db89
1 parent f2be6f6
commit 990db89
Showing 1 changed file with 1 addition and 17 deletions.
diff --git a/src/KubernetesClient/Kubernetes.ConfigInit.cs b/src/KubernetesClient/Kubernetes.ConfigInit.cs
@@ -72,28 +72,12 @@ private void InitializeFromConfig(KubernetesClientConfiguration config)
                 }
                 else
                 {
-                    if (CaCerts == null)
+                    if (CaCerts != null)
                     {
-                        var store = new X509Store(
-                            StoreName.CertificateAuthority,
-                            StoreLocation.CurrentUser);
 #if NET5_0_OR_GREATER
                         HttpClientHandler.SslOptions.RemoteCertificateValidationCallback =
 #else
                         HttpClientHandler.ServerCertificateCustomValidationCallback =
-#endif
-                            (sender, certificate, chain, sslPolicyErrors) =>
-                            {
-                                return CertificateValidationCallBack(sender, store.Certificates, certificate, chain,
-                                    sslPolicyErrors);
-                            };
-                    }
-                    else
-                    {
-#if NET5_0_OR_GREATER
-                        HttpClientHandler.SslOptions.RemoteCertificateValidationCallback =
-#else
-                    HttpClientHandler.ServerCertificateCustomValidationCallback =
 #endif
                             (sender, certificate, chain, sslPolicyErrors) =>
                             {