I need to query an internal api which uses a self signed certificate.
i bump into a:
Error running query: HTTPSConnectionPool(host='MYINTERNALHOST', port=443): Max retries exceeded with url: /ovirt-engine/api/vms (Caused by SSLError(SSLError("bad handshake: Error([('SSL routines', 'tls_process_server_certificate', 'certificate verify failed')])")))
the query looks like:
auth: [MYUSER, MYPASSWORD]
headers: [Accept: application/json]
Is there a was to force the library to trust the certificate (same behaviour as of “curl -k”)
Although this doesn’t answer your question
directly, if your internal host has a domain name in externally visible DNS (eg “ something.com”, “ something.io”, etc), then you could potentially generate a valid Lets Encrypt certificate for it using DNS based authentication.
That’s how it’s commonly done for servers which aren’t reachable from the outside world.
Can give you the exact certbot commands to run for generating the certificate, if that’d be useful. (?)
Interesting. That looks like a straight forward PR that should be easy to merge.
However it looks like the automatic build which is supposed to run and test submitted PR’s instead hung, and never reported back a status.
@jesse Are you able to give the build there a kick or something to restart it?
@justinclift or @jesse, can we give the automated build a kick for this one as Justin suggested?
01:44AM - 15 Oct 20 UTC
## What type of PR is this? (check all applicable)
- [x] Feature
Thanks for pinging this! Since I don’t have permissions on your fork I can’t retrigger the actions run. Please run the following and push your changes to the PR branch:
git commit --allow-empty -m "trigger GitHub actions"
The fix has now been merged. Thank you again!