search

Alation / Allie-SDK

A Python library for the Alation REST APIs.
https://alation.github.io/Allie-SDK/
Apache License 2.0
9 stars 2 forks source link

How to provide valid multiple CAs in an environment that has ZScaler? #35

Open AdeleXin opened 1 month ago

AdeleXin commented 1 month ago

My environment: We use ZScaler private access to access secure resources. Alation is one of them. The certificate I got is issued by ZScaler while we know it is actually secured by Amazon. My Questions are:

  1. what certificates are required to pass the verification in this scenario?
  2. how does the private_ssl_cert parameter handle multiple certificates? Does the library support specify both certificates programmatically like this: alation = allie.Alation(host='example.alation.com', user_id=1, refresh_token='XXXXXXXXXXXXXX', private_ssl_cert=('zscaler_cert.pem', 'amazon_cert.pem')) Or does it only accept combined certs? alation = allie.Alation(host='example.alation.com', user_id=1, refresh_token='XXXXXXXXXXXXXX', private_ssl_cert='combined_cert.pem')
laskmat commented 1 month ago

@AdeleXin openssl got param to pass whole directory with certs ( -CApath dir PEM format directory of CA's) So I according to this - did you try standard approach like:

  1. import certifi certifi.where() (I;ve pasted there combined cert per 1 domain)

but inside poetry still doesnt works :(