Throw errors when TOC cert path or sig are invalid

1 files changed, 2 insertions, 4 deletions

diff --git a/packages/server/src/metadata/metadataService.ts b/packages/server/src/metadata/metadataService.ts
index 324664b..ec0d489 100644
--- a/packages/server/src/metadata/metadataService.ts
+++ b/packages/server/src/metadata/metadataService.ts
@@ -162,8 +162,7 @@ class MetadataService {
     } catch (err) {
       // From FIDO MDS docs: "ignore the file if the chain cannot be verified or if one of the
       // chain certificates is revoked"
-      this.state = SERVICE_STATE.READY;
-      return;
+      throw new Error('TOC certificate path could not be validated');
     }
 
     // Verify the TOC JWT signature
@@ -178,8 +177,7 @@ class MetadataService {
 
     if (!verified) {
       // From FIDO MDS docs: "The FIDO Server SHOULD ignore the file if the signature is invalid."
-      this.state = SERVICE_STATE.READY;
-      return;
+      throw new Error('TOC signature could not be verified');
     }
 
     // Convert the nextUpdate property into a Date so we can determine when to redownload