Skip SSL verification on proxied backend: ssl_insecure_skip_verify

bitsofinfo · August 4, 2017, 3:04pm

I have a backend that I am proxying that presents a self-signed certificate.

I have this configured in the gateway

"http_server_options":{
        "ssl_insecure_skip_verify":true
}

Subsequent requests to the gateway log

2017-08-04T15:01:53.973731350Z time="Aug 4 15:01:53" level=error msg="http: proxy error: x509: cannot validate certificate for 192.168.0.252 because it doesn't contain any IP SANs" api_id=09904987af724a9576cae938f453831f org_id=5976507eb46f2e00016bb4a1 server_name="192.168.0.252:9443" user_id= user_ip=172.18.0.1 user_name=

leon · August 4, 2017, 3:19pm

You should use proxy_ssl_insecure_skip_verify in the root of config instead.

bitsofinfo · August 4, 2017, 3:28pm

Root of gateway config or API def config

Kos · August 4, 2017, 3:35pm

In the Gateway config.
You can find the API def doc here.

Thanks,
Kos @ Tyk Support Team