terraform-provider-bigip Provider doesn't check TLS certificates

Provider doesn't check TLS certificates

Open nvx opened this issue 3 years ago • 0 comments

Environment

Terraform bigip provider Version:1.15.0

Summary

The provider does not check TLS certificate information. It will accept expired, self signed, etc certificates for the management interface.

Looks like the offending code is in the go-bigip library which is used by the provider here:

https://github.com/F5Networks/terraform-provider-bigip/blob/e226091245c7689b7ebe83ea8985f1d0b1ea32e8/vendor/github.com/f5devcentral/go-bigip/bigip.go#L104

Expected Behavior

Invalid/expired/etc certificates are rejected unless a config override is present

Actual Behavior

Invalid/expired/etc certificates are accepted.

Jul 14 '22 05:07 nvx

terraform-provider-bigip terraform-provider-bigip copied to clipboard

Provider doesn't check TLS certificates

Environment

Summary

Expected Behavior

Actual Behavior

terraform-provider-bigip
terraform-provider-bigip copied to clipboard