使用https.request忽略node.js中无效的自签名ssl证书?
问题描述:
我正在开发一个登录本地无线路由器(Linksys)的小应用程序,但我遇到了路由器自签名证书的问题。
I'm working on a little app that logs into my local wireless router (Linksys) but I'm running into a problem with the router's self-signed ssl certificate.
我运行wget 192.168.1.1并获取:
I ran wget 192.168.1.1 and get:
ERROR: cannot verify 192.168.1.1's certificate, issued by `/C=US/ST=California/L=Irvine/O=Cisco-Linksys, LLC/OU=Division/CN=Linksys/emailAddress=support@linksys.com':
Self-signed certificate encountered.
ERROR: certificate common name `Linksys' doesn't match requested host name `192.168.1.1'.
To connect to 192.168.1.1 insecurely, use `--no-check-certificate'.
在节点中,捕获的错误是:
In node, the error being caught is:
{ [Error: socket hang up] code: 'ECONNRESET' }
我目前的示例代码是:
var req = https.request({
host: '192.168.1.1',
port: 443,
path: '/',
method: 'GET'
}, function(res){
var body = [];
res.on('data', function(data){
body.push(data);
});
res.on('end', function(){
console.log( body.join('') );
});
});
req.end();
req.on('error', function(err){
console.log(err);
});
如何让node.js做相当于--no-check-的操作证书?
How can I go about getting node.js to do the equivalent of "--no-check-certificate"?
答
廉价且不安全的答案:
添加
process.env.NODE_TLS_REJECT_UNAUTHORIZED = "0";
代码中,在调用 https.request()$ c $之前c>
在这个问题