enterprise/stages/mtls: attempt fix freezegun

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
2026-06-17 19:09:11 +03:00 · 2026-05-19 18:25:05 +02:00
parent bc3c12aec0
commit 8963dac3bc
1 changed files with 4 additions and 3 deletions
@@ -14,6 +14,7 @@ from cryptography.x509 import (
    load_pem_x509_certificate,
 )
 from cryptography.x509.verification import PolicyBuilder, Store, VerificationError
+from django.utils.timezone import now
 from django.utils.translation import gettext_lazy as _
 from rest_framework.exceptions import PermissionDenied

@@ -138,9 +139,9 @@ class MTLSStageView(ChallengeStageView):
        authorities_cert = [x.certificate for x in authorities]
        for _cert in certs:
            try:
-                PolicyBuilder().store(Store(authorities_cert)).build_client_verifier().verify(
-                    _cert, []
-                )
+                PolicyBuilder().store(Store(authorities_cert)).time(
+                    now()
+                ).build_client_verifier().verify(_cert, [])
                return _cert
            except (
                InvalidSignature,