| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051 |
- using Microsoft.Extensions.Logging;
- using System;
- using System.Security.Cryptography.X509Certificates;
- namespace FastGithub.HttpServer
- {
- sealed class CaCertInstallerOfWindows : ICaCertInstaller
- {
- /// <summary>
- /// 是否支持
- /// </summary>
- /// <returns></returns>
- public bool IsSupported()
- {
- return OperatingSystem.IsWindows();
- }
- /// <summary>
- /// 安装ca证书
- /// </summary>
- /// <param name="caCertFilePath">证书文件路径</param>
- /// <param name="logger"></param>
- public void Install(string caCertFilePath, ILogger logger)
- {
- try
- {
- using var store = new X509Store(StoreName.Root, StoreLocation.LocalMachine);
- store.Open(OpenFlags.ReadWrite);
- var caCert = new X509Certificate2(caCertFilePath);
- var subjectName = caCert.Subject[3..];
- foreach (var item in store.Certificates.Find(X509FindType.FindBySubjectName, subjectName, false))
- {
- if (item.Thumbprint != caCert.Thumbprint)
- {
- store.Remove(item);
- }
- }
- if (store.Certificates.Find(X509FindType.FindByThumbprint, caCert.Thumbprint, true).Count == 0)
- {
- store.Add(caCert);
- }
- store.Close();
- }
- catch (Exception)
- {
- logger.LogWarning($"请手动安装CA证书{caCertFilePath}到“将所有的证书都放入下列存储”\\“受信任的根证书颁发机构”");
- }
- }
- }
- }
|
