Specify CA file for httpapi connection plugin

Roman_Dodin · March 21, 2023, 5:43pm

Hi all,

for an httpapi connection plugin is there a way to specify a path to the ca.pem file to validate client certificate?
I see options to use_ssl and ansible_httpapi_validate_certs, but nothing that enables me to set a path to a custom CA file to validate certs.

With curl cacert option does it:

curl -s --cacert ./clab-srl01/ca/root/root-ca.pem https://...

And with requests it is "verify" - [https://requests.readthedocs.io/en/latest/user/advanced/#ssl-cert-verification](https://requests.readthedocs.io/en/latest/user/advanced/#ssl-cert-verification)

Roman_Dodin · March 21, 2023, 7:51pm

I got an answer from ansible networking team that this is not currently supported.
Opened a feature request for this one https://github.com/ansible-collections/ansible.netcommon/issues/528

Topic		Replies	Views
Certificate validation errors connecting to Windows Servers with Self-signed certs Ansible Developer windows	1	0	January 30, 2015
ca_path in play and EE container AWX Project awx , ee	6	0	October 15, 2021
uri module and 2-way TLS Ansible Project	1	1	October 31, 2019
Ansible 1.9.4 CERTIFICATE_VERIFY_FAILED when connecting to Windows Server Ansible Project windows	8	1	April 5, 2016
SSL error with gce_instance_template and ansible Ansible Project gcp	7	1	November 23, 2017

Specify CA file for httpapi connection plugin

Related topics