summaryrefslogtreecommitdiffhomepage
path: root/packages/server/src/helpers/validateCertificatePath.ts
diff options
context:
space:
mode:
Diffstat (limited to 'packages/server/src/helpers/validateCertificatePath.ts')
-rw-r--r--packages/server/src/helpers/validateCertificatePath.ts4
1 files changed, 2 insertions, 2 deletions
diff --git a/packages/server/src/helpers/validateCertificatePath.ts b/packages/server/src/helpers/validateCertificatePath.ts
index 32c1c6b..8cacb0b 100644
--- a/packages/server/src/helpers/validateCertificatePath.ts
+++ b/packages/server/src/helpers/validateCertificatePath.ts
@@ -4,7 +4,6 @@
import { KJUR, X509, ASN1HEX, zulutodate } from 'jsrsasign';
import isCertRevoked from './isCertRevoked';
-import { validateCertificateValidityWindow } from './validateCertificateValidityWindow';
const { crypto } = KJUR;
@@ -81,7 +80,8 @@ async function _validatePath(certificates: string[]): Promise<boolean> {
const notBefore = zulutodate(issuerCert.getNotBefore());
const notAfter = zulutodate(issuerCert.getNotAfter());
- if (!validateCertificateValidityWindow(notBefore, notAfter)) {
+ const now = new Date(Date.now());
+ if (notBefore > now || notAfter < now) {
throw new Error('Intermediate certificate is not yet valid or expired');
}
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-25 06:40:41 +0000