I have a Neo4J instance running on an AWS EC2 server. This server has a DNS entry for its public IP so that I can issue it a trusted certificate using certbot
I would like to access this instance over TLS inside the same VPC, using the internal address
The simplest way to do this is to change the hostname in the URI to the private VPC IP address and skip certificate verification. This is reasonably safe because I am connecting to an IP address within my VPC which I can expect to be a trusted service.
I would also prefer to disable the server from accepting plaintext bolt connections as this is a security issue.
Setting TlsConfig.InsecureSkipVerify in the configurersfunc in NewDriverWithContext is always overridden by connector.go:172.
Add a new field in the config to allow for overriding the value inferred from the URI for such a use case.
My use case:
TlsConfig.InsecureSkipVerifyin theconfigurersfuncinNewDriverWithContextis always overridden byconnector.go:172.