New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix: Error unable to get local issuer certificate #2003
base: master
Are you sure you want to change the base?
fix: Error unable to get local issuer certificate #2003
Conversation
RDS certificate is self-sign and therefore rejected when trying to connect with sslmode=required This change prevents the cert verification to fail the ssl connection
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
No way around RDS being self signed?
couldn't find anything. The only cert authority options are |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks alright for us, but might not be ideal for self-hosted / enterprise customer since it's a "secruity downgrade". Can it be parametrized?
Yes the only other way would be to load the certif in the docker image but painful
should this be closed? |
It needs to be addressed but it is not at the top of my list. I am basically keeping it to remind me to take care of it at some point. I am happy to close and reopen if you prefer |
no worries, I was just browsing the open PRs. Maybe you can put it in draft for now |
RDS certificate is self-sign and therefore rejected when trying to connect with sslmode=required
This change prevents the cert verification to fail the ssl connection