A common reason that self-signed certificate-based requests fail to authenticate is the Node process missing a root certificate. Once added, Apollo Studio will accept these requests.
Bypassing this check can be configured with the environment variable NODE_TLS_REJECT_UNAUTHORIZED from the command line (e.g. NODE_TLS_REJECT_UNAUTHORIZED=0 before node) or by adding process.env['NODE_TLS_REJECT_UNAUTHORIZED']=0; near the beginning of the relevant Gateway file. This introduces significant vulnerabilities, and we recommend the process mentioned above to avoid these concerns.
Comments
0 commentsPlease sign in to leave a comment.