libserdes self signed certificate path #7
Labels
Comments
|
It is using the system's default CA path location, but it does make sense to allow specifying an alternate path for self signed certs. What we need to do is expose a new |
|
Yes that would help. This is similar to how librdkafka is taking a SSL certificate path. When can we have this change? |
|
I can whip up a PR for you to try out next week. |
|
Hi Eden, do you have changes ready for this for me try it out. |
|
Hi Can you please let me know when this changes be available? |
beeender
added a commit
to beeender/libserdes
that referenced
this issue
Apr 14, 2021
- Add option 'ssl.ca.location', 'ssl.certificate.location', 'ssl.key.location' and 'ssl.enabled.min_protocol' to support SSL enabled registry service. Limitations: - 'schema.registry.url' accepts multiple URLs separated by ','. But the options added by this commit don't. That means all the URLs will use the same SSL information provided by those options. Close confluentinc#7
|
@edenhill can we reopen this issue? The PR linked doesn't appear to be merged yet. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi how do we specify selfsigned certificate path to libserdes to be used during schema server registration. I see from code it is using REST_POST but not taking certificate path as part of any of these APIs serdes_conf_new() and serdes_schema_add(). My schema registration is failing with following error "Failed to register schema name: - REST request failed (code -1): HTTP request failed: Peer certificate cannot be authenticated with given CA certificates"
The text was updated successfully, but these errors were encountered: