Closed jdoof closed 3 years ago
Hi @jdoof ,
Thanks for using our SDK. ssl-root-cas will cache root CAs at locale file system under node_modules, thus it will fail when you use read-only file system. I will log this issue in our backlog, and further investigate the best user experience for caching the root CAs.
For a quick fix, you could use ask-sdk-express-adapter@2.0.1, which doesn't have the feature to validate the certificates against root CAs (Thus without dependency on ssl-root-cas).
Thanks, Shen
Thanks, we will give downgrading a go and report back the results
@ShenChen-Amazon Just confirming that the downgrade is working as expected.
@jdoof ,
Thanks for confirmation. We've logged this problem into our backlog, thus will close this github issue for now. Will update here once new version of express-adapter pkg released.
Thanks, Shen
I'm submitting a...
We run a node azure function to run our Alexa Skill. We depend on
ask-sdk-express-adapter
to provide validation of request sent from Amazon. When deploying our code we utilise a feature of functions which is to deploy and run directly from a zip file. Outlined here. The side of effect this is the file system is mounted as read-only. The packagessl-root-cas
is configured to update the latest root cas at run time which in our case it cannot do.Expected Behavior
That an exception is not thrown when certificates cannot be updated
Current Behavior
Certificates Root store from module
ssl-root-cas
in theask-sdk-express-adapter
are failing to update when the file system is run in read-only mode. This is causing an exception to thrown and application to crash.Possible Solution
Steps to Reproduce (for bugs)
Context
This issue was causing our application to crash at runtime upon receiving requests from amazon.
Your Environment
2.1.0
ask-sdk2.7.0
Node.js and NPM Info