OpenSSL::SSL::SSLError while using LetsEncrypt ssl certificates
See original GitHub issueSoftware versions
- OS: Ubuntu 20.04
- Consumer Pact library:9.16.2
- Provider Pact library: 2.74.1
- Node Version: v12.15.0
Issue Checklist
Please confirm the following:
- I have upgraded to the latest
- I have read the FAQs in the Readme
- I have triple checked, that there are no unhandled promises in my code and have read the section on intermittent test failures
- I have set my log level to debug and attached a log file showing the complete request/response cycle
- For bonus points and virtual high fives, I have created a reproducable git repository (see below) to illustrate the problem
Expected behavior
The client should establish an HTTPS connection to the Pact Broker
Actual behavior
Client fails to verify SSL certificates
Steps to reproduce
- Run a pact broker with LetsEncrypt SSL certificates
- Use
@pact-foundation/pact
library to establish an HTTPS connection with Pact broker.
Details
It seems that pact is using Ruby HTTP client under the hood, which is reported for having outdated SSL certificate files bundled inside the library. In the httpclient issue, it is recommended to monkey patch HTTP client library to use system default SSL certificates.
Issue Analytics
- State:
- Created 2 years ago
- Comments:10 (7 by maintainers)
Top Results From Across the Web
Hi, From October 1st 2021 on worlds Let's Encrypt SSL old ...
If you mean "the old cert", then there is no update to it - it expired and was replaced by a newer one....
Read more >Simple Guide: Using Lets Encrypt SSL certs with Dovecot
This is for those who already have working Lets Encrypt SSL certs working on their websites, and already have self-signed SSL certs working ......
Read more >Certificates for localhost - Let's Encrypt
Sometimes people want to get a certificate for the hostname “localhost”, either for use in local development, or for distribution with a ...
Read more >SSL Certificate - Help - Let's Encrypt Community Support
I had issue with the SSL on Safari browers. I renewed the SSL and got the "Congratualation" in the terminal. I am using...
Read more >FAQ - Let's Encrypt
Does Let's Encrypt issue certificates for anything other than SSL/TLS for websites? Let's Encrypt certificates are standard Domain Validation ...
Read more >Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start FreeTop Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Top GitHub Comments
Clean as in without any lock-files. Possibly we should put that in the documentation.
Sent from my mobile
Great, thanks for clarifying!
A clean install should bring in the right version, we only pin to the major version: https://github.com/pact-foundation/pact-js/blob/4c949aec080472ea18d883468e705918a5389430/package.json#L97