You could always ask somebody to sign your certificate for you. Somebody like http://www.startcom.org. I had great support from these guys.
Adrian.
You have to override managerCheckCerts[1] when creating your manager. It would look something like:domanager <- newManager def { managerCheckCerts = yourChecker }httpLbs req manageryourChecker _ _ _ = return CertificateUsageAcceptWhich would allow any certificate.On Tue, Jun 11, 2013 at 5:19 PM, Friedrich Wiemer <friedrichwiemer@gmail.com> wrote:
edit:
if I change the the url from "https://servers-ip/" to
"https://servers-FQDN/" the error changes to:
>*** Exception: TlsException (HandshakeFailed (Error_Protocol ("certificate has unknown CA",True,UnknownCa)))
so the self-signed certificate causes the error.
How can I tell Network.HTTP.Conduit to accept unknown CA's certificates?
2013/6/11 Friedrich Wiemer <friedrichwiemer@gmail.com>:
> Hey,
>
> I'm trying to send a HTTPS-Get Request to a private server, which has
> a self-signed ssl-certificate. Currently I use Network.HTTP.Conduit
> and this code-snipped:
>
>> myGetRequest url = do
>> req <- parseUrl url
>> return $ req {secure = True}
>>
>> *Main Network.HTTP.Conduit> myGetRequest "https://my.private.server" >>= (\x -> withManager (httpLbs x))
> which results in
>> *** Exception: TlsException (HandshakeFailed (Error_Protocol ("certificate rejected: FQDN do not match this certificate",True,CertificateUnknown)))
>
> I guess that's due to the unverifiable, self-signed certificate? Can I
> disable the test or accept my certificate?
>
> Thanks in advance!
> Friedrich
_______________________________________________
Beginners mailing list
Beginners@haskell.org
http://www.haskell.org/mailman/listinfo/beginners
_______________________________________________
Beginners mailing list
Beginners@haskell.org
http://www.haskell.org/mailman/listinfo/beginners