github/steve
1
0
Fork 0
mirror of https://github.com/niusmallnan/steve.git synced 2025-08-11 18:21:39 +00:00
Code Issues Projects Releases Wiki Activity

Merge pull request #19 from StrongMonkey/cert

Browse Source 
Don't append CA if url is behind public CA
This commit is contained in:
Darren Shepherd 2021-05-03 18:38:07 -07:00 committed by GitHub
commit 97ff535abc
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
pkg/aggregation/server.go
View File

@ -26,12 +26,14 @@ func ListenAndServe(ctx context.Context, url string, caCert []byte, token string
InsecureSkipVerify: true, InsecureSkipVerify: true,
} }
} else if len(caCert) > 0 { } else if len(caCert) > 0 {
if _, err := http.Get(url); err != nil {
pool := x509.NewCertPool() pool := x509.NewCertPool()
pool.AppendCertsFromPEM(caCert) pool.AppendCertsFromPEM(caCert)
dialer.TLSClientConfig = &tls.Config{ dialer.TLSClientConfig = &tls.Config{
RootCAs: pool, RootCAs: pool,
} }
} }
}
handler = auth.ToMiddleware(auth.AuthenticatorFunc(auth.Impersonation))(handler) handler = auth.ToMiddleware(auth.AuthenticatorFunc(auth.Impersonation))(handler)