Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

SSL certificate - disable verification in axios and react

Tags:

I'm trying to consume an API in my react application using axios. The API works over HTTPS with self signed certificate. So far I've got the following error when connecting:

net::ERR_INSECURE_RESPONSE
bundle.js:65253 HTTP Failure in Axios Error: Network Error
    at createError (bundle.js:2188)
    at XMLHttpRequest.handleError (bundle.js:1717)

I tried the following but without success:

import axios from 'axios';

const https = require('https');

const agent = new https.Agent({
    rejectUnauthorized: false,
});

const client = axios.create({ //all axios can be used, shown in axios documentation
    baseURL: process.env.REACT_APP_API_URL,
    responseType: 'json',
    withCredentials: true,
    httpsAgent: agent
});

export default client;

Is there any way to disable the certificate verification?

like image 590
Goranov Avatar asked Dec 04 '17 10:12

Goranov

People also ask

How do I disable SSL verification in Axios?

You can configure axios to use a custom agent and set rejectUnauthorized to false for that agent: // At instance level const instance = axios. create({ httpsAgent: new https. Agent({ rejectUnauthorized: false }) }); instance.

Can I disable SSL verification?

Locate the control Validate Website SSL Certificates. From the list to the right side of this control, select Never. Click Save. SSL certificate validation is now disabled.

Is it possible to ignore SSL verification for fetch API in react app?

No, this error is from your browser and cannot be avoided in JavaScript. You must either add the self-signed certificate to your root certificate repository on your local machine or obtain a valid signed certificate from a free service such as Let's Encrypt.

How do I disable SSL validation in Chrome?

Right-click the Google Chrome shortcut on your desktop and select Properties. In the Target field simple append the following parameter after the quoted string: --ignore-certificate-errors.

1 Answers

Here is a way to have self-signed and accepted localhost certificates. Basically, you generate the certificate and add it to Chrome manually before using it.

Guide by Let's Encrypt: https://letsencrypt.org/docs/certificates-for-localhost/ (seems a bit advanced).

There is this answer too, that explains how to add certificate while you are at the site: https://stackoverflow.com/a/18602774

like image 157
dkasipovic Avatar answered Sep 18 '22 17:09

dkasipovic
Sign in to Comment

Related questions

Angular can't use HttpClient in external library
draft-js Cannot read property 'getIn' of undefined ( getUpdatedSelectionState )
Prevent clang-format from collapsing multi-line if statements into a single line
Why is my build failing in Android Studio with the exception "Failed to find byte code for android/support/v7/app/ActionBarActivity"?
How do I deploy jars to S3 with maven?
How to properly Normalize a String with composite characters?
FontFamily React Native App overwrite with device custom font (Samsung & Oppo)
Generating MNIST numbers using LSTM-CGAN in TensorFlow
androidInterface is not defined. What gives?
Debugging closures in Swift with Xcode LLDB console
Handling Status Dilemma
tf.reduce_sum on GPU fails in combination with placeholder as input shape

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!