Attempt a secure connection to an InCommon SSL site #6
+156
−7
Conversation
ghost
self-assigned this
|
Updated with InCommon cert and tests. |
tests/base.bats
Outdated
| @test "curl should connect to InCommon cert chain site successfully" { | ||
| run docker run -i tier/centos7base curl -o /dev/null --silent --head --write-out '%{http_code}\n' https://github.internet2.edu/ |
ghost
Aug 1, 2016
Author
Cool technique on the curl for the status code!
Instead of 'tier/centos7base', you can use the $maintainer/$imagename variables from common.bash (A little nicer when we need to transition for any reason.)
Cool technique on the curl for the status code!
Instead of 'tier/centos7base', you can use the $maintainer/$imagename variables from common.bash (A little nicer when we need to transition for any reason.)
|
docker/util installed |
This issue was closed.
Sign in
to join this conversation on GitHub.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Connecting via curl to a website with an InCommon issued cert chain shouldn't fail on recognizing the cert.
This issue has been addressed somewhat in the ansible-playbooks .
Remediation steps are, roughly:
update-ca-trust extractcommand to ensure that cert chain is recognized in the future