From 353a4a1af3165b2c59319865350d70a99105269c Mon Sep 17 00:00:00 2001 From: TheAifam5 Date: Mon, 9 Aug 2021 16:53:21 +0200 Subject: feat: Add --unsafely-treat-insecure-origin-as-secure flag to disable SSL verification (#11324) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This commit adds "--unsafely-treat-insecure-origin-as-secure" flag that allows to disable SSL verification for all domains, or specific domains if they were passed as an argument to the flag. Co-authored-by: Bartek IwaƄczuk --- extensions/fetch/lib.rs | 7 +++++++ 1 file changed, 7 insertions(+) (limited to 'extensions/fetch/lib.rs') diff --git a/extensions/fetch/lib.rs b/extensions/fetch/lib.rs index 0ac853cbc..cc5954b74 100644 --- a/extensions/fetch/lib.rs +++ b/extensions/fetch/lib.rs @@ -60,6 +60,7 @@ pub fn init( root_cert_store: Option, proxy: Option, request_builder_hook: Option RequestBuilder>, + unsafely_treat_insecure_origin_as_secure: Option>, ) -> Extension { Extension::builder() .js(include_js_files!( @@ -87,6 +88,7 @@ pub fn init( root_cert_store.clone(), None, proxy.clone(), + unsafely_treat_insecure_origin_as_secure.clone(), ) .unwrap() }); @@ -95,6 +97,8 @@ pub fn init( root_cert_store: root_cert_store.clone(), proxy: proxy.clone(), request_builder_hook, + unsafely_treat_insecure_origin_as_secure: + unsafely_treat_insecure_origin_as_secure.clone(), }); Ok(()) }) @@ -106,6 +110,7 @@ pub struct HttpClientDefaults { pub root_cert_store: Option, pub proxy: Option, pub request_builder_hook: Option RequestBuilder>, + pub unsafely_treat_insecure_origin_as_secure: Option>, } pub trait FetchPermissions { @@ -532,11 +537,13 @@ where let defaults = state.borrow::(); let cert_data = get_cert_data(args.ca_file.as_deref(), args.ca_data.as_deref())?; + let client = create_http_client( defaults.user_agent.clone(), defaults.root_cert_store.clone(), cert_data, args.proxy, + defaults.unsafely_treat_insecure_origin_as_secure.clone(), ) .unwrap(); -- cgit v1.2.3