python ignore certificate validation urllib2

Question

I want to ignore the certification validation during my request to the server with an internal corporate link   With python requests library I would do this   r   requests get link  allow redirects False verify False    How do I do the same with urllib2 library

User · Answer

The easiest way   python 2  import urllib2  ssl  request   urllib2 Request  https   somedomain co    response   urllib2 urlopen request  context ssl  create unverified context      python 3  from urllib request import urlopen import ssl  response   urlopen  https   somedomain co   context ssl  create unverified context

User · Answer

A more explicit example  built on Damien s code  calls a test resource at http   httpbin org    For python3  Note that if the server redirects to another URL  uri in add password  has to contain the new root URL  it s possible to pass a list of URLs  also     import ssl     import urllib parse import urllib request  def get resource uri  user  passwd False               Get the content of the SSL page              uri    https   httpbin org basic-auth user passwd      user    user      passwd    passwd       context   ssl create default context       context check hostname   False     context verify mode   ssl CERT NONE      password mgr   urllib request HTTPPasswordMgrWithDefaultRealm       password mgr add password None  uri  user  passwd       auth handler   urllib request HTTPBasicAuthHandler password mgr       opener   urllib request build opener auth handler  urllib request HTTPSHandler context context        urllib request install opener opener       return urllib request urlopen uri  read

User · Answer

According to  Enno Gr  per  s post  I ve tried the SSLContext constructor and it works well on my machine  code as below   import ssl ctx   ssl SSLContext ssl PROTOCOL SSLv23  urllib2 urlopen  https   your-test-server local   context ctx    if you need opener  just added this context like   opener   urllib2 build opener urllib2 HTTPSHandler context ctx     NOTE  all above test environment is python 2 7 12  I use PROTOCOL SSLv23 here since the doc says so  other protocol might also works but depends on your machine and remote server  please check the doc for detail

User · Answer

For those who uses an opener  you can achieve the same thing based on Enno Gr  per s great answer   import urllib2  ssl  ctx   ssl create default context   ctx check hostname   False ctx verify mode   ssl CERT NONE  opener   urllib2 build opener urllib2 HTTPSHandler context ctx   your first handler  your second handler       opener addheaders      Referer    http   example org blah html     content   opener open  https   localhost    read     And then use it as before   According to build opener and HTTPSHandler  a HTTPSHandler is added if ssl module exists  here we just specify our own instead of the default one

User · Answer

In the meantime urllib2 seems to verify server certificates by default  The warning  that was shown in the past disappeared for 2 7 9 and I currently ran into this problem in a test environment with a self signed certificate  and Python 2 7 9    My evil workaround  don t do this in production     import urllib2 import ssl  ctx   ssl create default context   ctx check hostname   False ctx verify mode   ssl CERT NONE  urllib2 urlopen  https   your-test-server local   context ctx    According to docs calling SSLContext constructor directly should work  too  I haven t tried that

User · Answer

urllib2 does not verify server certificate by default  Check this documentation   Edit  As pointed out in below comment  this is not true anymore for newer versions  seems like    2 7 9  of Python  Refer the below ANSWER

[python] python ignore certificate validation urllib2

Examples related to python

Examples related to python-2.7

Examples related to urllib2

Examples related to python-requests