Fixed Mqtt Certification validator if given Path for Certificates is null. (#263)

mdornaus · web-flow · commit 7604ef00204b · 2025-08-21T08:37:12.000+02:00
diff --git a/umatiGateway/Core/Mqtt/MqttProvider.cs b/umatiGateway/Core/Mqtt/MqttProvider.cs
@@ -218,9 +218,11 @@ private bool ValidateServerCertificate(MqttClientCertificateValidationEventArgs
                 Logger.Info($"Valid From       : {serverCertificate.NotBefore}");
                 Logger.Info($"Valid Until      : {serverCertificate.NotAfter}");
                 Logger.Info($"Key Algorithm    : {serverCertificate.GetKeyAlgorithm()}");
+                string servercertificatePath = this.app.ActiveConfiguration.MqttProviderConfig.ServerCertificatePath;
+                string customCertificatePath = this.app.ActiveConfiguration.MqttProviderConfig.CustomCaCertificatePath;
 
                 // Zertifikat speichern, falls nicht vorhanden
-                if (!File.Exists(this.app.ActiveConfiguration.MqttProviderConfig.ServerCertificatePath))
+                if (servercertificatePath != null && !File.Exists(servercertificatePath))
                 {
                     Logger.Info("Saving server certificate to disk.");
                     File.WriteAllBytes(this.app.ActiveConfiguration.MqttProviderConfig.ServerCertificatePath, serverCertificate.Export(X509ContentType.Cert));
@@ -251,7 +253,7 @@ private bool ValidateServerCertificate(MqttClientCertificateValidationEventArgs
                 }
 
                 // Schritt 2: Validierung mit benutzerdefinierter CA (falls vorhanden)
-                if (File.Exists(this.app.ActiveConfiguration.MqttProviderConfig.CustomCaCertificatePath))
+                if (customCertificatePath != null && File.Exists(customCertificatePath))
                 {
                     var customCaCertificate = new X509Certificate2(File.ReadAllBytes(this.app.ActiveConfiguration.MqttProviderConfig.CustomCaCertificatePath));
                     using var customChain = new X509Chain();

Original file line number	Diff line number	Diff line change
`@@ -218,9 +218,11 @@ private bool ValidateServerCertificate(MqttClientCertificateValidationEventArgs`
`218`	`218`	`Logger.Info($"Valid From : {serverCertificate.NotBefore}");`
`219`	`219`	`Logger.Info($"Valid Until : {serverCertificate.NotAfter}");`
`220`	`220`	`Logger.Info($"Key Algorithm : {serverCertificate.GetKeyAlgorithm()}");`
	`221`	`+ string servercertificatePath = this.app.ActiveConfiguration.MqttProviderConfig.ServerCertificatePath;`
	`222`	`+ string customCertificatePath = this.app.ActiveConfiguration.MqttProviderConfig.CustomCaCertificatePath;`
`221`	`223`
`222`	`224`	`// Zertifikat speichern, falls nicht vorhanden`
`223`		`- if (!File.Exists(this.app.ActiveConfiguration.MqttProviderConfig.ServerCertificatePath))`
	`225`	`+ if (servercertificatePath != null && !File.Exists(servercertificatePath))`
`224`	`226`	`{`
`225`	`227`	`Logger.Info("Saving server certificate to disk.");`
`226`	`228`	`File.WriteAllBytes(this.app.ActiveConfiguration.MqttProviderConfig.ServerCertificatePath, serverCertificate.Export(X509ContentType.Cert));`
`@@ -251,7 +253,7 @@ private bool ValidateServerCertificate(MqttClientCertificateValidationEventArgs`
`251`	`253`	`}`
`252`	`254`
`253`	`255`	`// Schritt 2: Validierung mit benutzerdefinierter CA (falls vorhanden)`
`254`		`- if (File.Exists(this.app.ActiveConfiguration.MqttProviderConfig.CustomCaCertificatePath))`
	`256`	`+ if (customCertificatePath != null && File.Exists(customCertificatePath))`
`255`	`257`	`{`
`256`	`258`	`var customCaCertificate = new X509Certificate2(File.ReadAllBytes(this.app.ActiveConfiguration.MqttProviderConfig.CustomCaCertificatePath));`
`257`	`259`	`using var customChain = new X509Chain();`