Vscode module PSU how trust self signed cert?

rstolpe · February 5, 2022, 6:07pm

Hi,
I have a self signed cert for https on my developer server and the vscode module are complaining.
How can I bypass this? I can’t connect to the server because of this.

Failed to query configuration files. unable to verify the first certificate This is a connection error.

DataTraveler · February 6, 2022, 12:16pm

I seem to be able to recreate the issue.

My next step was to add the cert to the user trusted certification authority. This changed the error to the more generic one below. This is where I’m stuck.

Failed to connect to PowerShell Universal. Universal may not be running or you need to update your settings.

I added the .pfx certificate to quite a few stores (both user & machine) but it does not make a difference.

@adam can you advise if it is possible to connect to PWU on https with the VS Code extension?

adam · February 6, 2022, 7:52pm

I don’t know why that isn’t working. We use the axios library to query the web service which certainly supports HTTPS. Feel free to raise an issue for it and I can look into it. There is likely a setting we can set to avoid certificate errors but it probably wants valid certificates by default.

github.com

ironmansoftware/universal-code/blob/master/src/universal.ts#L23

      
        
            request(path: string, method: any, data: any = null): AxiosPromise<any> | undefined {
            
            
    const settings = load();
            
            
    if (settings.appToken == null || settings.appToken === "") {
                    vscode.window.showErrorMessage("Not connected");
                    return;
                }
            
            
    return axios({
                    url: `${settings.url}${path}`,
                    method,
                    headers: {
                        authorization: `Bearer ${settings.appToken}`,
                        'Content-Type': 'application/json'
                    },
                    data: data
                });
            }
            
            
load() {

rstolpe · February 6, 2022, 8:05pm

I have done that

github.com/ironmansoftware/issues

vscode extension can't connect if SSL cert are self signed

opened 02:36PM - 06 Feb 22 UTC

rstolpe

bug PowerShell Universal

### Steps to Reproduce If your PSU server has a self signed SSL cert you can't …connect to it with the vscode extension. For more info see; https://forums.ironmansoftware.com/t/vscode-module-psu-how-trust-self-signed-cert/6582 ### Expected behavior ```console Somehow allow connection to psu servers with self signed certs. ``` ### Actual behavior ```console Can't connect it complaining about the cert ``` ### Environment data PSU 2.7.4 and latest vscode extension ### Visuals _No response_

adam · February 7, 2022, 12:15am

Sweet! I’ve updated the VS Code extension to support this as well as multiple connections.

rstolpe · February 7, 2022, 7:00am

Perfect, thanks

rstolpe · March 13, 2022, 2:46pm

The issue are still there, I was just trying it out.

adam · March 15, 2022, 8:34pm

Do you have the cert installed in trusted root? We aren’t ignoring certificate errors so if it’s not trusted you will see an error like this.