try add ca file to global root caas

2023-10-09 21:09:52 +02:00 · 2023-10-09 21:09:52 +02:00 · 71e8ea457c
commit 71e8ea457c
parent b9291201d9
3 changed files with 42 additions and 18 deletions
--- a/package-lock.json
+++ b/package-lock.json
@ -1826,6 +1826,11 @@
      "integrity": "sha512-0hYQ8SB4Db5zvZB4axdMHGwEaQjkZzFjQiN9LVYvIFB2nSUHW9tYpxWriPrWDASIxiaXax83REcLxuSdnGPZtw==",
      "dev": true
    },
+    "node_modules/@coolaj86/urequest": {
+      "version": "1.3.7",
+      "resolved": "https://registry.npmjs.org/@coolaj86/urequest/-/urequest-1.3.7.tgz",
+      "integrity": "sha512-PPrVYra9aWvZjSCKl/x1pJ9ZpXda1652oJrPBYy5rQumJJMkmTBN3ux+sK2xAUwVvv2wnewDlaQaHLxLwSHnIA=="
+    },
    "node_modules/@develar/schema-utils": {
      "version": "2.6.5",
      "resolved": "https://registry.npmjs.org/@develar/schema-utils/-/schema-utils-2.6.5.tgz",
@ -14749,6 +14754,14 @@
        "node": ">=0.10.0"
      }
    },
+    "node_modules/ssl-root-cas": {
+      "version": "1.3.1",
+      "resolved": "https://registry.npmjs.org/ssl-root-cas/-/ssl-root-cas-1.3.1.tgz",
+      "integrity": "sha512-KR8J210Wfvjh+iNE9jcQEgbG0VG2713PHreItx6aNCPnkFO8XChz1cJ4iuCGeBj0+8wukLmgHgJqX+O5kRjPkQ==",
+      "dependencies": {
+        "@coolaj86/urequest": "^1.3.6"
+      }
+    },
    "node_modules/stable": {
      "version": "0.1.8",
      "resolved": "https://registry.npmjs.org/stable/-/stable-0.1.8.tgz",
@ -16687,7 +16700,7 @@
    },
    "packages/bruno-cli": {
      "name": "@usebruno/cli",
-      "version": "0.13.0",
+      "version": "0.14.0",
      "license": "MIT",
      "dependencies": {
        "@usebruno/js": "0.8.0",
@ -16799,6 +16812,7 @@
        "node-machine-id": "^1.1.12",
        "qs": "^6.11.0",
        "socks-proxy-agent": "^8.0.2",
+        "ssl-root-cas": "^1.3.1",
        "uuid": "^9.0.0",
        "vm2": "^3.9.13",
        "yup": "^0.32.11"
@ -18341,6 +18355,11 @@
      "integrity": "sha512-0hYQ8SB4Db5zvZB4axdMHGwEaQjkZzFjQiN9LVYvIFB2nSUHW9tYpxWriPrWDASIxiaXax83REcLxuSdnGPZtw==",
      "dev": true
    },
+    "@coolaj86/urequest": {
+      "version": "1.3.7",
+      "resolved": "https://registry.npmjs.org/@coolaj86/urequest/-/urequest-1.3.7.tgz",
+      "integrity": "sha512-PPrVYra9aWvZjSCKl/x1pJ9ZpXda1652oJrPBYy5rQumJJMkmTBN3ux+sK2xAUwVvv2wnewDlaQaHLxLwSHnIA=="
+    },
    "@develar/schema-utils": {
      "version": "2.6.5",
      "resolved": "https://registry.npmjs.org/@develar/schema-utils/-/schema-utils-2.6.5.tgz",
@ -21164,6 +21183,7 @@
        "node-machine-id": "^1.1.12",
        "qs": "^6.11.0",
        "socks-proxy-agent": "^8.0.2",
+        "ssl-root-cas": "^1.3.1",
        "uuid": "^9.0.0",
        "vm2": "^3.9.13",
        "yup": "^0.32.11"
@ -28406,6 +28426,14 @@
        "tweetnacl": "~0.14.0"
      }
    },
+    "ssl-root-cas": {
+      "version": "1.3.1",
+      "resolved": "https://registry.npmjs.org/ssl-root-cas/-/ssl-root-cas-1.3.1.tgz",
+      "integrity": "sha512-KR8J210Wfvjh+iNE9jcQEgbG0VG2713PHreItx6aNCPnkFO8XChz1cJ4iuCGeBj0+8wukLmgHgJqX+O5kRjPkQ==",
+      "requires": {
+        "@coolaj86/urequest": "^1.3.6"
+      }
+    },
    "stable": {
      "version": "0.1.8",
      "resolved": "https://registry.npmjs.org/stable/-/stable-0.1.8.tgz",
--- a/packages/bruno-electron/package.json
+++ b/packages/bruno-electron/package.json
@ -40,6 +40,7 @@
    "node-machine-id": "^1.1.12",
    "qs": "^6.11.0",
    "socks-proxy-agent": "^8.0.2",
+    "ssl-root-cas": "^1.3.1",
    "uuid": "^9.0.0",
    "vm2": "^3.9.13",
    "yup": "^0.32.11"
--- a/packages/bruno-electron/src/ipc/network/index.js
+++ b/packages/bruno-electron/src/ipc/network/index.js
@ -1,3 +1,4 @@
+const os = require('os');
 const qs = require('qs');
 const https = require('https');
 const axios = require('axios');
@ -201,22 +202,19 @@ const registerNetworkIpc = (mainWindow) => {
        cancelTokenUid
      });

-      const preferences = getPreferences();
-      const sslVerification = get(preferences, 'request.sslVerification', true);
      const httpsAgentRequestFields = {};
-      if (!sslVerification) {
+      if (!preferences.isTlsVerification()) {
        httpsAgentRequestFields['rejectUnauthorized'] = false;
-      } else {
-        const cacertArray = [preferences['cacert'], process.env.SSL_CERT_FILE, process.env.NODE_EXTRA_CA_CERTS];
-        cacertFile = cacertArray.find((el) => el);
-        if (cacertFile && cacertFile.length > 1) {
-          try {
-            const fs = require('fs');
-            caCrt = fs.readFileSync(cacertFile);
-            httpsAgentRequestFields['ca'] = caCrt;
-          } catch (err) {
-            console.log('Error reading CA cert file:' + cacertFile, err);
-          }
+      }
+
+      const cacertArray = [preferences.getCaCert(), process.env.SSL_CERT_FILE, process.env.NODE_EXTRA_CA_CERTS];
+      let cacertFile = cacertArray.find((el) => el);
+      if (cacertFile && cacertFile.length > 1) {
+        try {
+          const sslRootCas = require('ssl-root-cas').inject();
+          sslRootCas.addFile(cacertFile);
+        } catch (err) {
+          console.log('Error reading CA cert file:' + cacertFile, err);
        }
      }

@ -249,16 +247,13 @@ const registerNetworkIpc = (mainWindow) => {

        if (socksEnabled) {
          const socksProxyAgent = new SocksProxyAgent(proxyUri);
-
          request.httpsAgent = socksProxyAgent;
-
          request.httpAgent = socksProxyAgent;
        } else {
          request.httpsAgent = new HttpsProxyAgent(
            proxyUri,
            Object.keys(httpsAgentRequestFields).length > 0 ? { ...httpsAgentRequestFields } : undefined
          );
-
          request.httpAgent = new HttpProxyAgent(proxyUri);
        }
      } else if (Object.keys(httpsAgentRequestFields).length > 0) {