Ignore invalid self-signed ssl certificate in node js with https request

Question

I m working on a little app that logs into my local wireless router  Linksys  but I m running into a problem with the router s self-signed ssl certificate   I ran wget 192 168 1 1 and get   ERROR  cannot verify 192 168 1 1 s certificate  issued by   C US ST California L Irvine O Cisco-Linksys  LLC OU Division CN Linksys emailAddress support linksys com   Self-signed certificate encountered  ERROR  certificate common name  Linksys  doesn t match requested host name  192 168 1 1   To connect to 192 168 1 1 insecurely  use  --no-check-certificate     In node  the error being caught is      Error  socket hang up  code   ECONNRESET      My current sample code is   var req   https request        host   192 168 1 1        port  443      path           method   GET      function res        var body           res on  data   function data           body push data                res on  end   function            console log  body join                     req end     req on  error   function err       console log err         How can I go about getting node js to do the equivalent of  --no-check-certificate

User · Answer

Add the following environment variable   NODE TLS REJECT UNAUTHORIZED 0   e g  with export   export NODE TLS REJECT UNAUTHORIZED 0    with great thanks to Juanra

User · Answer

For meteorJS you can set with npmRequestOptions   HTTP post url        npmRequestOptions            rejectUnauthorized  false    TODO remove when deploy            timeout  30000     30s     data  xml    function error  result        console log  error      error       console log  resultXml      result

User · Answer

Or you can try to add in local name resolution  hosts file found in the directory etc in most operating systems  details differ  something like this   192 168 1 1 Linksys    and next  var req   https request        host   Linksys        port  443      path           method   GET        will work

User · Answer

Don t believe all those who try to mislead you   In your request  just add   ca   fs readFileSync  certificate path    encoding   utf-8       If you turn on unauthorized certificates  you will not be protected at all  exposed to MITM for not validating identity   and working without SSL won t be a big difference  The solution is to specify the CA certificate that you expect as shown in the next snippet  Make sure that the common name of the certificate is identical to the address you called in the request As specified in the host    What you will get then is   var req   https request          host   192 168 1 1          port  443        path             ca   fs readFileSync  certificate path    encoding   utf-8            method   GET         rejectUnauthorized  true        requestCert  true        agent  false          Please read this article  disclosure  blog post written by this answer s author  here in order to understand    How CA Certificates work How to generate CA Certs for testing easily in order to simulate production environment

User · Answer

Cheap and insecure answer   Add  process env  NODE TLS REJECT UNAUTHORIZED     0    in code  before calling https request    A more secure way  the solution above makes the whole node process insecure  is answered in this question

User · Answer

In your request options  try including the following      var req   https request          host   192 168 1 1          port  443        path             method   GET         rejectUnauthorized  false        requestCert  true        agent  false

User · Answer

try export NODE TLS REJECT UNAUTHORIZED 0

User · Answer

So  my company just switched to Node js v12 x  I was using NODE TLS REJECT UNAUTHORIZED  and it stopped working  After some digging  I started using NODE EXTRA CA CERTS A FILE IN OUR PROJECT that has a PEM format of our self signed cert and all my scripts are working again  So  if your project has self signed certs  perhaps this env var will help you  Ref  https   nodejs org api cli html cli node extra ca certs file

User · Answer

You can also create a request instance with default options   require  request   defaults   rejectUnauthorized  false

User · Answer

Adding to  Armand answer      Add the following environment variable       NODE TLS REJECT UNAUTHORIZED 0 e g  with export       export NODE TLS REJECT UNAUTHORIZED 0  with great thanks to Juanra    If you on windows usage   set NODE TLS REJECT UNAUTHORIZED 0   Thanks to   weagle08

[node.js] Ignore invalid self-signed ssl certificate in node.js with https.request?

Examples related to node.js

Examples related to https

Examples related to ssl-certificate