Architecture #15513
closed
Make certificate verification in HTTP calls configurable
Added by Alexis Mousset over 5 years ago.
Updated over 2 years ago.
Description
Currently all HTTP calls (reporting, inventory, API, etc.) disable certificate validation.
We can make it configurable based on a system variable, to allow users having a certificate infrastructure in place to verify certificates.
This change needs to be done in both techniques and agent scripts.
The default behaviour needs to stay the current one for compatibility.
- Status changed from New to In progress
- Assignee set to Alexis Mousset
- Status changed from In progress to Pending technical review
- Assignee changed from Alexis Mousset to Nicolas CHARLES
- Pull Request set to https://github.com/Normation/rudder-techniques/pull/1498
- Has duplicate User story #11835: Make curl invocation's ignore certificate configurable added
- Has duplicate User story #9624: Add an option to check server certificate when sending inventory added
- Status changed from Pending technical review to Pending release
This bug has been fixed in Rudder 6.0.0~beta1 which was released today.
- Related to Architecture #15515: Document how to use an existing X509 PKI to secure Rudder node-server communication added
- Status changed from Pending release to Released
Also available in: Atom
PDF
Updated by 
Updated by