Hey guys I successfully setup TLS HTTPS support on the quick

Question

Hey guys I successfully setup TLS HTTPS support on the quickstart kratos and authentication and HTTPS authentication calls work through the browser and they work from the node sample app but they don t work through curl this is what i see when I curl the https public api endpoint ```curl v s X GET H Accept application json https self service login browser Trying TCP NODELAY set Connected to port 443 0 ALPN offering h2 ALPN offering http 1 1 successfully set certificate verify locations CAfile etc ssl cert pem CApath none TLSv1 2 OUT TLS handshake Client hello 1 TLSv1 2 IN TLS handshake Server hello 2 TLSv1 2 IN TLS handshake Certificate 11 TLSv1 2 OUT TLS alert certificate expired 557 SSL certificate problem certificate has expired Closing connection 0``` is it caching or is there another step where I have to set a certificate some where else is etc ssl cert pem in the docker container or is it on my local machine that s making the curl request Also I should mention that http works fine and as expected it s only https with curl

proud-plumber-24205 · Answer

< clean glass 46254> try setting ` insecure` flag on the curl command

clean-glass-46254 · Answer

gt $ curl v s X k insecure GET H Accept application json lt https self service login browser gt gt Could not resolve host GET gt Closing connection 0 gt Trying gt TCP NODELAY set gt Connected to port 443 1 gt ALPN offering h2 gt ALPN offering http 1 1 gt successfully set certificate verify locations gt CAfile etc ssl cert pem gt CApath none gt TLSv1 2 OUT TLS handshake Client hello 1 gt TLSv1 2 IN TLS handshake Server hello 2 gt TLSv1 2 IN TLS handshake Certificate 11 gt TLSv1 2 IN TLS handshake Server key exchange 12 gt TLSv1 2 IN TLS handshake Server finished 14 gt TLSv1 2 OUT TLS handshake Client key exchange 16 gt TLSv1 2 OUT TLS change cipher Change cipher spec 1 gt TLSv1 2 OUT TLS handshake Finished 20 gt TLSv1 2 IN TLS change cipher Change cipher spec 1 gt TLSv1 2 IN TLS handshake Finished 20 gt SSL connection using TLSv1 2 ECDHE RSA AES256 GCM SHA384 gt ALPN server accepted to use http 1 1 gt Server certificate gt subject CN= gt start date Dec 15 08 09 43 2021 GMT gt expire date Mar 15 08 09 42 2022 GMT gt issuer C=US O=Let s Encrypt CN=R3 gt SSL certificate verify result certificate has expired 10 continuing anyway gt gt k self service login browser HTTP 1 1 gt gt Host gt gt User Agent curl 7 64 1 gt gt Accept application json gt gt gt lt HTTP 1 1 400 Bad Request gt lt Server nginx 1 20 0 gt lt Date Tue 21 Dec 2021 05 21 27 GMT gt lt Content Type text html gt lt Content Length 157 gt lt Connection close gt lt gt lt html gt gt lt head gt lt title gt 400 Bad Request lt title gt lt head gt gt lt body gt gt lt center gt lt h1 gt 400 Bad Request lt h1 gt lt center gt gt lt hr gt lt center gt nginx 1 20 0 lt center gt gt lt body gt gt lt html gt gt Closing connection 1 gt TLSv1 2 OUT TLS alert close notify 256

clean-glass-46254 · Answer

still not showing anything

clean-glass-46254 · Answer

or not showing a correct json output