jinjianming commented on issue #479:
URL:
https://github.com/apache/apisix-helm-chart/issues/479#issuecomment-1441658340
I am a certificate generated through openssl genrsa; request will prompt
"failed to verify the legitimacy of the server and there could not establish a
secure connection to it".
---
curl -v https://apisix-control-plane-control-plane:9280/version
...
* TLSv1.2 (OUT), TLS alert, unknown CA (560):
* SSL certificate problem: unable to get local issuer certificate
* Closing connection 0
curl: (60) SSL certificate problem: unable to get local issuer certificate
...
With the curl command, I can get normal results through the "- k" parameter
curl -v -k https://apisix-control-plane-control-plane:9280/version
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384
* ALPN, server accepted to use http/1.1
* Server certificate:
* subject: CN=apisix-control-plane-control-plane
* start date: Feb 23 11:59:51 2023 GMT
* expire date: Jan 30 11:59:51 2123 GMT
* issuer: CN=Encryption Everywhere DV TLS CA - G1
* SSL certificate verify result: unable to get local issuer certificate
(20), continuing anyway.
> GET /version HTTP/1.1
> Host: apisix-control-plane-control-plane:9280
{"etcdserver":"3.5.4","etcdcluster":"3.5.0"}
...
Whether Apisix has configuration to skip ssl certificate check or use http,
because I am an intranet environment.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
