I'm trying to point the ayon launcher to the system ca-bundle in this case a rocky 9 machine. When I start the launcher I do see the message that the system is set to use custom the CA cert bundle but the application still can't connect to our https based ayon beckend. If I add the studio internal CA cert in the ayon launcher certifi bundle even with the SSL_CERT_FILE env var set then it works. This tells me that somewhere along the stack the env var is replaced with certifi instead of following that through.
At the moment I'm installing the private CA cert in the certifi ca bundle within the app launcher but it would be great if this would work so I can just have a global env var for SSL for all versions of the launcher as we upgrade it. I can confirm that curl is working against the ayon https beckend using the system ca bundle.
Cheers!
CA not in certifi
export SSL_FILE_CERT=/etc/pki/tls/certs/ca-bundle.crt
./ayon
--- your system is set to use custom CA certificate bundle.
!!! Got invalid credentials.
Could not connect to AYON server 'https://ayon.studioblabla.com'.
--- your system is set to use custom CA certificate bundle.
CA in certifi too, seems its grabbing my CA from there instead
export SSL_FILE_CERT=/etc/pki/tls/certs/ca-bundle.crt
./ayon
--- your system is set to use custom CA certificate bundle.
>>> Connected to AYON server https://ayon.studioblabla.com
Hi guys,
I'm trying to point the ayon launcher to the system ca-bundle in this case a rocky 9 machine. When I start the launcher I do see the message that the system is set to use custom the CA cert bundle but the application still can't connect to our https based ayon beckend. If I add the studio internal CA cert in the ayon launcher certifi bundle even with the SSL_CERT_FILE env var set then it works. This tells me that somewhere along the stack the env var is replaced with certifi instead of following that through.
At the moment I'm installing the private CA cert in the certifi ca bundle within the app launcher but it would be great if this would work so I can just have a global env var for SSL for all versions of the launcher as we upgrade it. I can confirm that curl is working against the ayon https beckend using the system ca bundle.
Cheers!