Open dmitriyvolk opened 1 year ago
The PoC PR https://github.com/abhinavsingh/proxy.py/pull/1280 makes it work as expected.
Looks like #1283 implemented this around 6 months ago, but it still hasn't shipped in a release yet. Are you cutting a new release anytime soon @abhinavsingh ? Thanks!
@ddl-ebrown Thanks for reminding me about it. Just started release workflow for v2.4.4rc4
https://github.com/abhinavsingh/proxy.py/actions/runs/4417674343 , should be out soon.
Awesome - thank you!
Check FAQs Please check Frequently Asked Questions before opening a bug report.
Describe the bug Reverse proxy ignores the
ca_file
argument.When the reverse proxy calls
upstream.wrap()
(https://github.com/abhinavsingh/proxy.py/blob/develop/proxy/http/server/reverse.py#L97) it omits theca_cert
argument. Therefore theSSLContext
being created doesn't have the CA file.This makes it impossible to reverse-proxy to servers with self-signed certificates, which is exactly what I need to do in some cases.
To Reproduce Steps to reproduce the behavior:
proxy.py
as 'proxy --enable-reverse-proxy --pluginsMyPlugin
like this:curl http://localhost:8899/blah
to trigger errorExpected behavior Upstream connection succeeds.
Version information
Additional context N/A
Screenshots N/A