Closed angusmillar closed 2 weeks ago
Hi @angusmillar, thanks for the bug report
We haven't had a chance to look into the certificate validation piece yet, but there is a bug with logging in here that is fixed for 3.2.2 which should ship soon, or you can pull from the dev feed if you'd like to see more logging from 3.2
You can use the dev feed with a nuget.config that looks something like this:
<?xml version="1.0" encoding="utf-8"?>
<configuration>
<packageSources>
<add key="SteeltoeDev" value="https://pkgs.dev.azure.com/dotnet/Steeltoe/_packaging/dev/nuget/v3/index.json" />
<add key="NuGet" value="https://api.nuget.org/v3/index.json" />
</packageSources>
</configuration>
I think this might be related to #1178
The implementation of certificate validation (and turning it off) has been heavily refactored in the main branch, which contains the upcoming Steeltoe v4.x. We now have tests for ValidateCertificates=false
, so I think this has been fixed.
Please open a new issue if you're still experiencing this when running against the main branch.
Hi Guys, excellent library and super useful for us.
We are running V3.1.3 of Steeltoe.Extensions.Configuration.ConfigServerCore, without issue.
However, as soon as we upgrade to V3.2.0 or even the latest V3.2.1 we then encounter the following application exception (See below) on startup.
It appears the library is attempting to validate our config server's certificate even though we explicitly have configured it not to, by using the ValidateCertificates=false Steeltoe configuration property.
Here is our appsetting.json section with this config.
Environment:
Logging seen in working version V3.1.3 on startup: 2022-12-09 12:59:39.274 +10:00 [INF] Fetching config from server at: https://[Removed for security privacy] 2022-12-09 12:59:40.373 +10:00 [INF] Located environment: Sonic.Orders.HL7.InboundOrderService, ["uat"], null, null, null
The Exception that is thrown when using V3.2.0 or V3.2.1:
Thanks for considering guys.