Add a unit test to verify default certificate chain is loaded from the certificate path

Fix Formatting

Author: jnjudge1

src/Servers/Kestrel/Core/src/IHttpsConfigurationService.cs

@@ -100,7 +100,8 @@ public CertificateAndConfig(X509Certificate2 certificate, CertificateConfig cert
         CertificateChain = [];
     }
 
-    public CertificateAndConfig(X509Certificate2 certificate, CertificateConfig certificateConfig, X509Certificate2Collection certificateChain){
+    public CertificateAndConfig(X509Certificate2 certificate, CertificateConfig certificateConfig, X509Certificate2Collection certificateChain)
+    {
         Certificate = certificate;
         CertificateConfig = certificateConfig;
         CertificateChain = certificateChain;

src/Servers/Kestrel/Core/src/KestrelConfigurationLoader.cs

@@ -77,7 +77,7 @@ internal KestrelConfigurationLoader(
     private CertificateConfig? DefaultCertificateConfig { get; set; }
     internal X509Certificate2? DefaultCertificate { get; set; }
 
-    internal X509Certificate2Collection? DefaultCertificateChain {get; set;}
+    internal X509Certificate2Collection? DefaultCertificateChain { get; set; }
     /// <summary>
     /// Specifies a configuration Action to run when an endpoint with the given name is loaded from configuration.
     /// </summary>

src/Servers/Kestrel/Core/src/KestrelServerOptions.cs

@@ -303,7 +303,8 @@ internal void ApplyDefaultCertificate(HttpsConnectionAdapterOptions httpsOptions
         if (ConfigurationLoader?.DefaultCertificate is X509Certificate2 certificateFromLoader)
         {
             httpsOptions.ServerCertificate = certificateFromLoader;
-            if (ConfigurationLoader?.DefaultCertificateChain is X509Certificate2Collection certificateChainFromLoader){
+            if (ConfigurationLoader?.DefaultCertificateChain is X509Certificate2Collection certificateChainFromLoader)
+            {
                 httpsOptions.ServerCertificateChain = certificateChainFromLoader;
             }
             return;

src/Servers/Kestrel/Core/src/TlsConfigurationLoader.cs

@@ -131,8 +131,9 @@ public ListenOptions UseHttpsWithSni(
             var (defaultCert, defaultCertChain) = _certificateConfigLoader.LoadCertificate(defaultCertConfig, "Default");
             if (defaultCert != null)
             {
-                if(defaultCertChain != null){
-                    return new CertificateAndConfig(defaultCert,defaultCertConfig,defaultCertChain);
+                if (defaultCertChain != null)
+                {
+                    return new CertificateAndConfig(defaultCert, defaultCertConfig, defaultCertChain);
                 }
                 return new CertificateAndConfig(defaultCert, defaultCertConfig);
             }

src/Servers/Kestrel/Kestrel/test/KestrelConfigurationLoaderTests.cs

@@ -196,6 +196,33 @@ public void ConfigureDefaultsAppliesToNewConfigureEndpoints()
         Assert.False(serverOptions.CodeBackedListenOptions[0].IsTls);
     }
 
+    [Fact]
+    public void ConfigureDefaultCertificatePathLoadsChain()
+    {
+        var serverOptions = CreateServerOptions();
+        var testCertPath = TestResources.GetCertPath("leaf.com.crt");
+        var ran1 = false;
+        var config = new ConfigurationBuilder().AddInMemoryCollection(new[]
+        {
+            new KeyValuePair<string, string>("Endpoints:End1:Url", "https://*:5001"),
+            new KeyValuePair<string,string>("Certificates:Default:Path",testCertPath)
+        }).Build();
+
+        serverOptions.Configure(config)
+            .Endpoint("End1", opt =>
+            {
+                ran1 = true;
+                Assert.True(opt.IsHttps);
+                Assert.NotNull(opt.HttpsOptions.ServerCertificate);
+                Assert.NotNull(opt.HttpsOptions.ServerCertificateChain);
+                Assert.Equal(2, opt.HttpsOptions.ServerCertificateChain.Count);
+            }).Load();
+
+        Assert.True(ran1);
+
+        Assert.True(serverOptions.ConfigurationBackedListenOptions[0].IsTls);
+    }
+
     [Fact]
     public void ConfigureEndpointDefaultCanEnableHttps()
     {