Skip to content

Is it possible to disable SSL certificate verification for object storage? #3250

Answered by arielshaqed
dveselov asked this question in Q&A
Discussion options

You must be logged in to vote

Hi @dveselov !

Currently this is not possible. lakeFS uses the golang TLS (SSL) client, and it does not add an option to set its InsecureSkipVerify option. Also, AFAIK that client does not support an environment variable to switch off certificate verification; see comments by the Go developers on an issue to add just that.

You can always communicate over an insecure channel by providing the endpoint for underlying storage using protocol http rather than https; for instance that is done in all our tests that use a MinIO running locally.

You can open an issue to set InsecureSkipVerify! If you do so, please include a good use-case.

My personal opinion starts here

As motivation for providing …

Replies: 2 comments 2 replies

Comment options

You must be logged in to vote
2 replies
@dveselov
Comment options

@arielshaqed
Comment options

Answer selected by dveselov
Comment options

You must be logged in to vote
0 replies
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Category
Q&A
Labels
None yet
3 participants