Add option for own CA certificate

[small1]

On some networks they run their own CA. That is not always signed upstream.

It would be good with an option to the docket container to copy a ca certificate and update the ca trusted certs

[MarcelCoding]

Would it be "enough" to just use the system certificate authorities? Then everyone would be able to customize it with an custom docker file e.g.:

https://stackoverflow.com/questions/42292444/how-do-i-add-a-ca-root-certificate-inside-a-docker-image#42292623 (did not verify if this works)

With a base image of mine?

[small1]

It would yes. We tried with our customers setup we got parts in and we could see the ca updated. But we still got certificate unverified error.

[MarcelCoding]

Could you perhaps try the version from here: https://github.com/MarcelCoding/jitsi-openid/actions/runs/10497409906 (as you know, I currently do not have a jitsi and I need to override transitive dependencies and i don't know yet if this changes the behavior as expected.)

[small1]

Hmmm It seems like it still failes the connect to adfs with the information unknown issuer. We can provide access to jitsi for you we do have quite a few tests running :) Extception is this test which is on an internal network so that will be hard. But general access to jitsi and some kind of openid auth can be arranged.

[MarcelCoding]

That would be a solution to continue. What kind of access do you mean? Feel free to write it to me via mail. (me at m4rc3l dot de)