Ever have a problem when you need to clone from a git repo with https, and it fails because you have a self signed certificate?
Every other post tells you to "turn off security".
Don't do that.
First download the certificate with this script:
#!/bin/env bash # User Variables API_HOST=example.gitlab.com # could be an ip address PORT=443 CRT=secret.crt BEGIN="-----BEGIN CERTIFICATE-----" END="-----END CERTIFICATE-----" echo $BEGIN > $CRT echo quit | openssl s_client -showcerts -servername "${API_HOST}" -connect "${API_HOST}":${PORT} | sed "/$BEGIN/,/$END/!d;//d" >> $CRT echo $END >> $CRT Use the script to download your certificate:
cd ./download-certificate.sh Now tell git where your certificate is:
git config --global http.sslCAInfo ~/secret.crt Done.
Now you should be able to use git clone with your https server without issues.
Top comments (0)