Details
-
Task
-
Status: Closed (View Workflow)
-
Major
-
Resolution: Fixed
-
1.4.0
-
None
-
None
-
2021-5, 2021-6, 2021-7
Description
Low hanging fruit.
We gave the 1.2.5 + S3 package to Patrice @ ABS (iirc?) to play with. It is not working for him b/c the S3 boxes he's using (some on-prem WD boxes that impl S3 protocol) have SSL certs that can't be verified.
Using the libmarias3 lib directly and setting S3NOVERIFY=1, he can interact with it. SM doesn't currently have the option to do that, but should have one. Just needs to know to init the S3 lib with that var or not, don't have to implement anything substantial.
Attachments
Activity
Change should be made to storagemanager.cnf to support setting these option in libmarias3 via StorageManager
SM_USE_HTTP (default disabled – current default is https)
SM_SSL_VERIFY (default enabled)
cnf file options added:
- Setting use_http to 'enabled' for host to use http instead of https
- The default is use_http = disabled (https)
- use_http = enabled
- Setting ssl_verify to 'disabled' for how to not use SSL verification
- Default is ssl_verify = enabled
- ssl_verify = disabled
the problem is not that the SSL cert can't be verified, it is the url construction that makes it not verifiable. constructing the url in the same way it is when using an IP would make it work. for reference : http://www.wryway.com/blog/aws-s3-url-styles/