Merge pull request #19 from StrongMonkey/cert

Don't append CA if url is behind public CA
2025-08-12 10:41:50 +00:00 · 2021-05-03 18:38:07 -07:00 · 2021-05-03 18:38:07 -07:00 · 97ff535abc
commit 97ff535abc
parent 86ca5628f7 30042ac3a0
1 changed files with 6 additions and 4 deletions
--- a/pkg/aggregation/server.go
+++ b/pkg/aggregation/server.go
@ -26,10 +26,12 @@ func ListenAndServe(ctx context.Context, url string, caCert []byte, token string
 			InsecureSkipVerify: true,
 		}
 	} else if len(caCert) > 0 {
-		pool := x509.NewCertPool()
+		if _, err := http.Get(url); err != nil {
-		pool.AppendCertsFromPEM(caCert)
+			pool := x509.NewCertPool()
-		dialer.TLSClientConfig = &tls.Config{
+			pool.AppendCertsFromPEM(caCert)
-			RootCAs: pool,
+			dialer.TLSClientConfig = &tls.Config{
 				RootCAs: pool,
 			}
 		}
 	}