From 9b0472ca63365e858c6069967d06ecb7e4477de7 Mon Sep 17 00:00:00 2001 From: Simon Popugaev Date: Wed, 6 Sep 2023 22:23:04 +0300 Subject: [PATCH] allow insecyre ws --- Cargo.lock | 1 + Cargo.toml | 1 + src/clients/worker.rs | 19 +++++++++++++++++-- src/main.rs | 1 + 4 files changed, 20 insertions(+), 2 deletions(-) diff --git a/Cargo.lock b/Cargo.lock index b5e21c0..0ef5048 100644 --- a/Cargo.lock +++ b/Cargo.lock @@ -571,6 +571,7 @@ dependencies = [ "http", "indoc", "itertools", + "native-tls", "reqwest", "serde", "serde_json", diff --git a/Cargo.toml b/Cargo.toml index dc7f766..50776df 100644 --- a/Cargo.toml +++ b/Cargo.toml @@ -22,6 +22,7 @@ golem-examples = "0.1.5" http = "0.2.9" indoc = "2.0.3" itertools = "0.11.0" +native-tls = "0.2.11" reqwest = "0.11.20" serde = { version = "1.0.188", features = ["derive"] } serde_json = "1.0.105" diff --git a/src/clients/worker.rs b/src/clients/worker.rs index 308f090..28923a3 100644 --- a/src/clients/worker.rs +++ b/src/clients/worker.rs @@ -6,13 +6,15 @@ use futures_util::{future, pin_mut, SinkExt, StreamExt}; use golem_client::model::{ ComponentInstance, InstanceMetadata, InvokeParameters, InvokeResult, WorkerCreationRequest, }; +use native_tls::TlsConnector; use reqwest::Url; use serde::Deserialize; use std::fmt::{Display, Formatter}; use std::time::Duration; use tokio::{task, time}; use tokio_tungstenite::{ - connect_async, tungstenite::client::IntoClientRequest, tungstenite::protocol::Message, + connect_async_tls_with_config, tungstenite::client::IntoClientRequest, + tungstenite::protocol::Message, Connector, }; use tracing::{debug, info}; @@ -89,6 +91,7 @@ pub trait WorkerClient { pub struct WorkerClientLive { pub client: C, pub base_url: Url, + pub allow_insecure: bool, } #[async_trait] @@ -279,7 +282,19 @@ impl WorkerClient for WorkerC let headers = request.headers_mut(); headers.insert("Authorization", auth.header().parse().unwrap()); - let (ws_stream, _) = connect_async(request) + let connector = if self.allow_insecure { + Some(Connector::NativeTls( + TlsConnector::builder() + .danger_accept_invalid_certs(true) + .danger_accept_invalid_hostnames(true) + .build() + .unwrap(), + )) + } else { + None + }; + + let (ws_stream, _) = connect_async_tls_with_config(request, None, false, connector) .await .map_err(|e| GolemError(format!("Failed websocket: {e}")))?; diff --git a/src/main.rs b/src/main.rs index d660fb1..61718ee 100644 --- a/src/main.rs +++ b/src/main.rs @@ -324,6 +324,7 @@ async fn async_main(cmd: GolemCommand) -> Result<(), Box> allow_insecure, }, base_url: url.clone(), + allow_insecure, }; let worker_srv = WorkerHandlerLive { client: worker_client.clone(),