Add option to relax SSL checks

djc / instant-epp

MIT License

7 stars 3 forks source link

Add option to relax SSL checks #45

Open Morpheus9 opened 2 weeks ago

Morpheus9 commented 2 weeks ago

It would be nice, if there was an option to relax the SSL checks to accept "unsecure"/non matching SSL certificates:

If I try to connect to a local host "epp-test.ote.tld.mydomain.com" which is using a non matching certificate (e.g. the cert was issued for epp.nic.tld) I receive an I/O error: I/O error: invalid peer certificate: NotValidForName

It would be very helpful if there was an option to skip these checks...

djc commented 2 weeks ago

Thanks for your interest. I'd be open to add an alternative constructor for the RustlsConnector that takes a pre-configured rustls::ClientConfig, which should allow you to build this. Would you be able to submit a PR?

djc commented 1 day ago

(Alternatively if you want to talk about getting some commercial support, happy to jump on a call.)