Our upstream Services use a internal CA to issue their TLS Certificates. That creates multiple problems when working with Tyk
In the Dashboard we can’t import new API definitions, we get the error "Get “https:/xxxxxxxxx/api-docs”: tls: failed to verify certificate: x509: certificate signed by unknown authority
On the gateway side we can use Ignore TLS verification in the advanced options for classic APIs, but that setting seems to be missing in OAS APIs leaving only to globaly disable verification in the config file.
I found some old articles that mention adding the root certificate to tyk dashboard, but they seem to be outdated (update-ca-certificates is not available in the distroless image). What is the correct way to add a custom root ca to tyk dashboard and gateway so that they trust all certificates issued by those?