gotify-tray icon indicating copy to clipboard operation
gotify-tray copied to clipboard
verified publisher icon seird

Self Signed CA support

Open defect-track opened this issue 1 year ago • 2 comments

Hello,

are there any plans to support self signed certificates?

The initial test connection against a server which has a self signed certificate fails (red notification around URL and button). No errors reported which indicate the issue.

To work around the issue you have to export REQUESTS_CA_BUNDLE=/path/to/root.pem and it all starts working. Updating your python CA store does also work.

It would be great if Gotify-Tray would read the system wide CA store or allows to add the CS pem file during setup.

defect-track avatar Dec 16 '24 08:12 defect-track

For reference:

  • websocket: https://doc.qt.io/qt-6/qwebsocket.html#ignoreSslErrors-1
  • requests: https://docs.python-requests.org/en/latest/user/advanced/#ssl-cert-verification

seird avatar Feb 11 '25 17:02 seird

Requests is in feature freeze and has been for about half a decade.

If you use Niquests instead, it's an actively maintained drop-in replacement, and will automatically use the OS Trust store so a certificate doesn't need to be imported for a self signed ca.

NaruZosa avatar Mar 03 '25 01:03 NaruZosa