Self signed certificate argument for local db ins self hosted convex #31
Comments
|
Hi I would pretty strongly recommend against modifying the certificate path and just use a properly signed certificate signed by a certificate authority such that the regular cert roots on your machine work. However, if you know what you're doing and you really want to use a different root cert - you can do it by editing the source code and rebuilding from source. Your initial post was a little vague, but I am inferring that this is about the SSL connection for connecting to your underlying persistence database. From the sound of it, you're using either postgres/mysql and not sqlite. If you're connecting to postgres, you can edit the source here convex-backend/crates/postgres/src/lib.rs Line 198 in dd1c6e7 If mysql, you can edit source here convex-backend/crates/mysql/src/connection.rs Line 477 in dd1c6e7 Best of luck to you. |
convex-copybara bot
pushed a commit
that referenced
this issue
Jan 31, 2025
Okay, this should be a bit closer to a "best-practice" Dockerfile! The total compressed image size is ~160MB which seems very acceptable, though I added an optional build arg `debug` if you want to preserve symbols which makes it significantly larger. It's reasonably quick to rebuild (which isn't important for our current goals, but certainly is nice to have) on Linux, though on Mac we're still limited by how quickly Docker can scan your filesystem for local changes (surprise: not quickly). This is, however, the iteration speed I'm used to with other Docker-based projects. Tested that the image at least seems to work with `--help` -- I didn't try passing an admin key in yet. During the build, it'll currently print out these lines: ``` #31 0.938 warning: [email protected]: not within a suitable 'git' worktree! #31 0.938 warning: [email protected]: VERGEN_GIT_COMMIT_TIMESTAMP set to default #31 0.938 warning: [email protected]: VERGEN_GIT_SHA set to default ``` Because this is no longer a git repo inside the container, vergen is complaining that these were set to default. We can configure vergen not to warn and then in "real" builds, we'll just need to pass `VERGEN_GIT_COMMIT_TIMESTAMP` and `VERGEN_GIT_SHA` ourselves to the `docker build` command (cc @nipunn1313) GitOrigin-RevId: 2b743981dfc9586da34d199fb4ca794a84307b0c
convex-copybara bot
pushed a commit
that referenced
this issue
Feb 4, 2025
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [npm-run-all2](https://redirect.github.com/bcomnes/npm-run-all2) | devDependencies | major | [`^5.0.0` -> `^7.0.0`](https://renovatebot.com/diffs/npm/npm-run-all2/5.0.2/7.0.2) | | [npm-run-all2](https://redirect.github.com/bcomnes/npm-run-all2) | devDependencies | major | [`^6.1.2` -> `^7.0.0`](https://renovatebot.com/diffs/npm/npm-run-all2/6.2.6/7.0.2) | --- ### Release Notes <details> <summary>bcomnes/npm-run-all2 (npm-run-all2)</summary> ### [`v7.0.2`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v702) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v7.0.1...v7.0.2) ##### Merged - Upgrade: Bump neostandard from 0.11.9 to 0.12.0 [`#164`](https://redirect.github.com/bcomnes/npm-run-all2/pull/164) - Upgrade: Bump codecov/codecov-action from 4 to 5 [`#161`](https://redirect.github.com/bcomnes/npm-run-all2/pull/161) ##### Commits - Raise cross-spawn version floor to ^7.0.6 [`45a9e19`](https://redirect.github.com/bcomnes/npm-run-all2/commit/45a9e191b75e0b76433409808b6219d1f4dffe83) - Merge pull request [#​163](https://redirect.github.com/bcomnes/npm-run-all2/issues/163) from bcomnes/dependabot/npm_and_yarn/mocha-11.0.1 [`285967a`](https://redirect.github.com/bcomnes/npm-run-all2/commit/285967a3fc5076d8c22ecb14823eb6fc274dd835) - Upgrade: Bump mocha from 10.8.2 to 11.0.1 [`5d1aea5`](https://redirect.github.com/bcomnes/npm-run-all2/commit/5d1aea58f17abd201515f737c06bbe8044d05d21) ### [`v7.0.1`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v701---2024-10-23) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v7.0.0...v7.0.1) ##### Commits - Revert engine range bump back to Node 18 [`b2e849b`](https://redirect.github.com/bcomnes/npm-run-all2/commit/b2e849bf8d31135751dd7458724344dd1bca120e) ### [`v7.0.0`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v700---2024-10-21) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.6...v7.0.0) ##### Merged - Prevent a throw when looking up undefined results [`#158`](https://redirect.github.com/bcomnes/npm-run-all2/pull/158) ##### Commits - **Breaking change:** Bump node engines ^18.17.0 || >=20.5.0 [`49b95f0`](https://redirect.github.com/bcomnes/npm-run-all2/commit/49b95f0c4905504a94d1a7ce87fbb7e77ab60df5) - Merge pull request [#​156](https://redirect.github.com/bcomnes/npm-run-all2/issues/156) from bcomnes/rm-rf-rimraf [`c661ffc`](https://redirect.github.com/bcomnes/npm-run-all2/commit/c661ffc942e09a68b1a553190d3a550dc0f6a39c) - Remove rimraf [`c77e085`](https://redirect.github.com/bcomnes/npm-run-all2/commit/c77e0856c65115b32788c3e9a1e441ba69fbd430) ### [`v6.2.6`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v626---2024-10-21) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/ee3bf122e700102b9ab27b1d172d98856765f4a4...v6.2.6) ##### Commits - Prevent a throw when looking up undefined results [`d928f9a`](https://redirect.github.com/bcomnes/npm-run-all2/commit/d928f9ad59c00a20797c90d35b62ef0aecf0c364) ### [`v6.2.5`](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.4...ee3bf122e700102b9ab27b1d172d98856765f4a4) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.4...ee3bf122e700102b9ab27b1d172d98856765f4a4) ### [`v6.2.4`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v624---2024-10-18) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.3...v6.2.4) ##### Merged - Switch to JS-based `which` command [`#154`](https://redirect.github.com/bcomnes/npm-run-all2/pull/154) ##### Fixed - Switch to JS-based `which` command [`#153`](https://redirect.github.com/bcomnes/npm-run-all2/issues/153) ### [`v6.2.3`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v623---2024-09-13) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.2...v6.2.3) ##### Commits - Merge pull request [#​151](https://redirect.github.com/bcomnes/npm-run-all2/issues/151) from bcomnes/fix-pnpm-agian [`c43fa2b`](https://redirect.github.com/bcomnes/npm-run-all2/commit/c43fa2b677442c710a29654a333b15c8de4f00ab) - Avoid passing config fields as flags for pnpm [`dc2d7da`](https://redirect.github.com/bcomnes/npm-run-all2/commit/dc2d7da61cf0898d0bc2b25747e588325e06b9a9) ### [`v6.2.2`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v622---2024-07-04) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.1...v6.2.2) ##### Commits - Revert "Compatibility: npm, yarn and pnpm run scripts" [`fc35f0d`](https://redirect.github.com/bcomnes/npm-run-all2/commit/fc35f0dc4f78afc1c631fa94b6ac85ba0fb0e7b1) ### [`v6.2.1`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v621---2024-07-03) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.0...v6.2.1) ##### Merged - Compatibility: npm, yarn and pnpm run scripts [`#143`](https://redirect.github.com/bcomnes/npm-run-all2/pull/143) - Use neostandard + add more static code analysis [`#142`](https://redirect.github.com/bcomnes/npm-run-all2/pull/142) - Upgrade: Bump c8 from 9.1.0 to 10.0.0 [`#141`](https://redirect.github.com/bcomnes/npm-run-all2/pull/141) - Upgrade: Bump p-queue from 7.4.1 to 8.0.1 [`#138`](https://redirect.github.com/bcomnes/npm-run-all2/pull/138) ### [`v6.2.0`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v620---2024-05-17) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.1.2...v6.2.0) ##### Merged - Placeholder that unfolds into multiple tasks [`#134`](https://redirect.github.com/bcomnes/npm-run-all2/pull/134) - 📝 add compatibility note for pnpm. [`#136`](https://redirect.github.com/bcomnes/npm-run-all2/pull/136) - Upgrade: Bump codecov/codecov-action from 3 to 4 [`#131`](https://redirect.github.com/bcomnes/npm-run-all2/pull/131) ### [`v6.1.2`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v612---2024-01-31) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.1.1...v6.1.2) ##### Merged - feat: move to read-package-json-fast [`#130`](https://redirect.github.com/bcomnes/npm-run-all2/pull/130) - Upgrade: Bump c8 from 8.0.1 to 9.0.0 [`#127`](https://redirect.github.com/bcomnes/npm-run-all2/pull/127) - Upgrade: Bump github/codeql-action from 2 to 3 [`#126`](https://redirect.github.com/bcomnes/npm-run-all2/pull/126) - Upgrade: Bump actions/setup-node from 3 to 4 [`#123`](https://redirect.github.com/bcomnes/npm-run-all2/pull/123) ##### Commits - Publish the whole project [`3dde20c`](https://redirect.github.com/bcomnes/npm-run-all2/commit/3dde20c1c8fa973045773e03f4fc121360fdbed4) - Utilize CJS require for 'read-package-json-fast' [`605ca15`](https://redirect.github.com/bcomnes/npm-run-all2/commit/605ca15d9adee3ce14da6fcaa98cb14d9c03795c) - Update FUNDING.yml [`c838ee9`](https://redirect.github.com/bcomnes/npm-run-all2/commit/c838ee9eea06e545d1a7f25592f7beb8468f1afd) ### [`v6.1.1`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v611---2023-10-04) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.1.0...v6.1.1) ##### Commits - Add an npm-run-all2 bin alias [`e6dc017`](https://redirect.github.com/bcomnes/npm-run-all2/commit/e6dc0175006a9a703c1256949f8424922043a33a) - Fix npx on node 16 [`cfbd974`](https://redirect.github.com/bcomnes/npm-run-all2/commit/cfbd974a5990e8d549ae8bf7bfb632424ff4990b) ### [`v6.1.0`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v610---2023-10-04) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.6...v6.1.0) ##### Merged - Upgrade: Bump actions/checkout from 3 to 4 [`#119`](https://redirect.github.com/bcomnes/npm-run-all2/pull/119) ##### Commits - Lets avoid spawn.sync [`a3ee6cd`](https://redirect.github.com/bcomnes/npm-run-all2/commit/a3ee6cd9e051471bfd7b1b4d153aa260fc9b6634) - Add support for pnpm ([#​117](https://redirect.github.com/bcomnes/npm-run-all2/issues/117)) [`3df3708`](https://redirect.github.com/bcomnes/npm-run-all2/commit/3df37084ab1ae55f873fcbb449ad0d7df8bc328f) ### [`v6.0.6`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v606---2023-07-04) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.5...v6.0.6) ##### Merged - Update all esm only packages [`#114`](https://redirect.github.com/bcomnes/npm-run-all2/pull/114) - Upgrade: Bump c8 from 7.14.0 to 8.0.0 [`#111`](https://redirect.github.com/bcomnes/npm-run-all2/pull/111) - Delete .nycrc [`#109`](https://redirect.github.com/bcomnes/npm-run-all2/pull/109) - Update CodeQL workflow [`#110`](https://redirect.github.com/bcomnes/npm-run-all2/pull/110) ##### Commits - Lint fix and a few hand fixes [`2c81236`](https://redirect.github.com/bcomnes/npm-run-all2/commit/2c8123694b73084f37b68eb6719632024331d2e9) - Fix tests [`79e2c97`](https://redirect.github.com/bcomnes/npm-run-all2/commit/79e2c97c5b32c46d5cf64ce37b3b78cf4035498e) - Update p-queue and ansi-styles [`10b075c`](https://redirect.github.com/bcomnes/npm-run-all2/commit/10b075c849153822e9abc1447222d186a1cd6136) ### [`v6.0.5`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v605---2023-04-03) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.4...v6.0.5) ##### Merged - Upgrade: Bump bcomnes/npm-bump from 2.1.0 to 2.2.1 [`#104`](https://redirect.github.com/bcomnes/npm-run-all2/pull/104) - Upgrade: Bump minimatch from 6.2.0 to 7.0.0 [`#103`](https://redirect.github.com/bcomnes/npm-run-all2/pull/103) - Upgrade: Bump minimatch from 5.1.4 to 6.0.4 [`#102`](https://redirect.github.com/bcomnes/npm-run-all2/pull/102) - Upgrade: Bump fs-extra from 10.1.0 to 11.1.0 [`#98`](https://redirect.github.com/bcomnes/npm-run-all2/pull/98) ##### Commits - Merge pull request [#​105](https://redirect.github.com/bcomnes/npm-run-all2/issues/105) from bcomnes/dependabot/npm_and_yarn/minimatch-8.0.2 [`cbf78c8`](https://redirect.github.com/bcomnes/npm-run-all2/commit/cbf78c8155365db9ec06cb8054bc821e057d06e2) - Upgrade: Bump minimatch from 7.4.4 to 8.0.2 [`c90d02b`](https://redirect.github.com/bcomnes/npm-run-all2/commit/c90d02b02df6dd33cbab01caac44b9729e012bb9) - Merge pull request [#​101](https://redirect.github.com/bcomnes/npm-run-all2/issues/101) from bcomnes/dependabot/npm_and_yarn/rimraf-4.0.4 [`d0d46a2`](https://redirect.github.com/bcomnes/npm-run-all2/commit/d0d46a2b0aa87a3c0c79b78a013415e7902c8324) ### [`v6.0.4`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v604---2022-11-09) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.3...v6.0.4) ##### Merged - When running through npx, use the npm that should be next to it. [`#96`](https://redirect.github.com/bcomnes/npm-run-all2/pull/96) ### [`v6.0.3`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v603---2022-11-09) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.2...v6.0.3) ##### Merged - Upgrade: Bump jsdoc from 3.6.11 to 4.0.0 [`#95`](https://redirect.github.com/bcomnes/npm-run-all2/pull/95) - Upgrade: Bump bcomnes/npm-bump from 2.0.2 to 2.1.0 [`#92`](https://redirect.github.com/bcomnes/npm-run-all2/pull/92) - docs: update minimum supported Node version [`#90`](https://redirect.github.com/bcomnes/npm-run-all2/pull/90) ##### Commits - Merge pull request [#​94](https://redirect.github.com/bcomnes/npm-run-all2/issues/94) from MarmadileManteater/runjs-being-called-instead-of-npm-run [`da913f9`](https://redirect.github.com/bcomnes/npm-run-all2/commit/da913f9481543907457bd2298ad17192a4420874) - Use NPM_CLI_JS over npm_execpath [`0224167`](https://redirect.github.com/bcomnes/npm-run-all2/commit/022416740f0d9cf8eae2f2e4ca4de8d09a6b67d8) - Add a proper check for yarn [`bb41ef6`](https://redirect.github.com/bcomnes/npm-run-all2/commit/bb41ef6fd85a803a4a22e8382f67ea9e3e235b7d) ### [`v6.0.2`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v602---2022-08-16) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.1...v6.0.2) ##### Merged - Update package shell quote [`#89`](https://redirect.github.com/bcomnes/npm-run-all2/pull/89) ### [`v6.0.1`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v601---2022-06-14) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.0...v6.0.1) ##### Commits - Lower bound node engine to ^14.18.0 || >=16.0.0 [`fc2957f`](https://redirect.github.com/bcomnes/npm-run-all2/commit/fc2957f4814848b55bc29b0a0a1def8bfadda18b) ### [`v6.0.0`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v600---2022-06-11) [Compare Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v5.0.2...v6.0.0) ##### Merged - Move support to node 16 and npm 8 [`#85`](https://redirect.github.com/bcomnes/npm-run-all2/pull/85) - Upgrade: Bump pidtree from 0.5.0 to 0.6.0 [`#84`](https://redirect.github.com/bcomnes/npm-run-all2/pull/84) - Upgrade: Bump mocha from 9.2.2 to 10.0.0 [`#83`](https://redirect.github.com/bcomnes/npm-run-all2/pull/83) - Upgrade: Bump github/codeql-action from 1 to 2 [`#82`](https://redirect.github.com/bcomnes/npm-run-all2/pull/82) - Upgrade: Bump fastify/github-action-merge-dependabot from 3.0.2 to 3.1 [`#78`](https://redirect.github.com/bcomnes/npm-run-all2/pull/78) - Upgrade: Bump codecov/codecov-action from 2 to 3 [`#77`](https://redirect.github.com/bcomnes/npm-run-all2/pull/77) - Upgrade: Bump actions/setup-node from 2 to 3 [`#75`](https://redirect.github.com/bcomnes/npm-run-all2/pull/75) - Upgrade: Bump actions/checkout from 2 to 3 [`#76`](https://redirect.github.com/bcomnes/npm-run-all2/pull/76) - Upgrade: Bump minimatch from 4.2.1 to 5.0.0 [`#74`](https://redirect.github.com/bcomnes/npm-run-all2/pull/74) - Upgrade: Bump minimatch from 3.1.1 to 4.1.1 [`#73`](https://redirect.github.com/bcomnes/npm-run-all2/pull/73) - Upgrade: Bump fastify/github-action-merge-dependabot from 2.7.1 to 3.0.2 [`#72`](https://redirect.github.com/bcomnes/npm-run-all2/pull/72) - Upgrade: Bump fastify/github-action-merge-dependabot from 2.7.0 to 2.7.1 [`#71`](https://redirect.github.com/bcomnes/npm-run-all2/pull/71) - Upgrade: Bump fastify/github-action-merge-dependabot from 2.6.0 to 2.7.0 [`#70`](https://redirect.github.com/bcomnes/npm-run-all2/pull/70) - Upgrade: Bump fastify/github-action-merge-dependabot from 2.5.0 to 2.6.0 [`#69`](https://redirect.github.com/bcomnes/npm-run-all2/pull/69) - Simplify npm scripts [`#64`](https://redirect.github.com/bcomnes/npm-run-all2/pull/64) - Update CI config [`#62`](https://redirect.github.com/bcomnes/npm-run-all2/pull/62) - Add CodeQL workflow [`#65`](https://redirect.github.com/bcomnes/npm-run-all2/pull/65) - Switch to c8 for coverage [`#66`](https://redirect.github.com/bcomnes/npm-run-all2/pull/66) - tests: switch to assert's strict mode [`#67`](https://redirect.github.com/bcomnes/npm-run-all2/pull/67) - Enforce LF in the repo. [`#61`](https://redirect.github.com/bcomnes/npm-run-all2/pull/61) - Upgrade: Bump actions/setup-node from 2.4.0 to 2.4.1 [`#59`](https://redirect.github.com/bcomnes/npm-run-all2/pull/59) - Upgrade: Bump fastify/github-action-merge-dependabot from 2.4.0 to 2.5.0 [`#58`](https://redirect.github.com/bcomnes/npm-run-all2/pull/58) - Upgrade: Bump codecov/codecov-action from 2.0.2 to 2.1.0 [`#57`](https://redirect.github.com/bcomnes/npm-run-all2/pull/57) - Upgrade: Bump fastify/github-action-merge-dependabot from 2.2.0 to 2.4.0 [`#54`](https://redirect.github.com/bcomnes/npm-run-all2/pull/54) - Upgrade: Bump actions/setup-node from 2.3.2 to 2.4.0 [`#53`](https://redirect.github.com/bcomnes/npm-run-all2/pull/53) - Upgrade: Bump actions/setup-node from 2.3.1 to 2.3.2 [`#52`](https://redirect.github.com/bcomnes/npm-run-all2/pull/52) - Upgrade: Bump actions/setup-node from 2.3.0 to 2.3.1 [`#51`](https://redirect.github.com/bcomnes/npm-run-all2/pull/51) - Upgrade: Bump codecov/codecov-action from 2.0.1 to 2.0.2 [`#50`](https://redirect.github.com/bcomnes/npm-run-all2/pull/50) - Upgrade: Bump actions/setup-node from 2.2.0 to 2.3.0 [`#49`](https://redirect.github.com/bcomnes/npm-run-all2/pull/49) - Upgrade: Bump codecov/codecov-action from 1.5.2 to 2.0.1 [`#48`](https://redirect.github.com/bcomnes/npm-run-all2/pull/48) - Upgrade: Bump fastify/github-action-merge-dependabot from 2.1.1 to 2.2.0 [`#47`](https://redirect.github.com/bcomnes/npm-run-all2/pull/47) - Upgrade: Bump actions/setup-node from 2.1.5 to 2.2.0 [`#46`](https://redirect.github.com/bcomnes/npm-run-all2/pull/46) - Upgrade: Bump codecov/codecov-action from 1.5.0 to 1.5.2 [`#44`](https://redirect.github.com/bcomnes/npm-run-all2/pull/44) - Upgrade: Bump mocha from 8.4.0 to 9.0.0 [`#43`](https://redirect.github.com/bcomnes/npm-run-all2/pull/43) - Upgrade: Bump fastify/github-action-merge-dependabot from 2.1.0 to 2.1.1 [`#42`](https://redirect.github.com/bcomnes/npm-run-all2/pull/42) - Upgrade: Bump fastify/github-action-merge-dependabot from 2.0.0 to 2.1.0 [`#41`](https://redirect.github.com/bcomnes/npm-run-all2/pull/41) - Upgrade: Bump gh-release from 5.0.2 to 6.0.0 [`#40`](https://redirect.github.com/bcomnes/npm-run-all2/pull/40) - Upgrade: Bump codecov/codecov-action from 1 to 1.5.0 [`#39`](https://redirect.github.com/bcomnes/npm-run-all2/pull/39) - Upgrade: Bump fs-extra from 9.1.0 to 10.0.0 [`#38`](https://redirect.github.com/bcomnes/npm-run-all2/pull/38) - Upgrade: Bump fastify/github-action-merge-dependabot from v1.2.1 to v2.0.0 [`#33`](https://redirect.github.com/bcomnes/npm-run-all2/pull/33) - Upgrade: Bump fastify/github-action-merge-dependabot [`#32`](https://redirect.github.com/bcomnes/npm-run-all2/pull/32) - Upgrade: Bump fastify/github-action-merge-dependabot from v1.1.1 to v1.2.0 [`#31`](https://redirect.github.com/bcomnes/npm-run-all2/pull/31) - Upgrade: Bump actions/setup-node from v2.1.4 to v2.1.5 [`#30`](https://redirect.github.com/bcomnes/npm-run-all2/pull/30) - Upgrade: Bump gh-release from 4.0.4 to 5.0.0 [`#29`](https://redirect.github.com/bcomnes/npm-run-all2/pull/29) - Upgrade: Bump actions/setup-node from v2.1.3 to v2.1.4 [`#28`](https://redirect.github.com/bcomnes/npm-run-all2/pull/28) - Upgrade: Bump actions/setup-node from v2.1.2 to v2.1.3 [`#27`](https://redirect.github.com/bcomnes/npm-run-all2/pull/27) ##### Fixed - Disable override tests on > npm 7 [`#79`](https://redirect.github.com/bcomnes/npm-run-all2/issues/79) ##### Commits - **Breaking change:** Bump engines to node 16 and npm 8 [`7d19dd4`](https://redirect.github.com/bcomnes/npm-run-all2/commit/7d19dd47ee70286878f380934d18823310355471) - Add auto merge [`e598066`](https://redirect.github.com/bcomnes/npm-run-all2/commit/e598066fea7478e0fce14b4f09d64fdf37b0420f) - Update test.yml [`96260d6`](https://redirect.github.com/bcomnes/npm-run-all2/commit/96260d6c088ce0aa2bd367ff0736d653f5b0b1f1) </details> --- ### Configuration 📅 **Schedule**: Branch creation - "on the first day of the month" in timezone America/Los_Angeles, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). GitOrigin-RevId: 8c5fdf6ec333574263488d1a669b9b7c22e616bf
|
This is just untrue "I would pretty strongly recommend against modifying the certificate path and just use a properly signed certificate signed by a certificate authority such that the regular cert roots on your machine work.". Are you honestly saying that CA that is not recognized by docker image provided by you is insecure or improperly signed? Of course you should be able to define who you trust by providing ca certificate (and not modifying anything). |
|
We'd be open to taking in a PR to accept a different root cert on command line. Thanks for the followup @tahvane1. Advice is targeted towards folks who don't understand certs well - where if you change the root certs without knowing what you're doing, you can open yourself up to attack. If you have a different set of root CAs that you trust other than the ones in the standard docker image, go for it - change the code. This task and my original response predate our first docker images, so that also changes things - answer feels outdated. Is that a use case you're running into? I'll reopen the task to reflect @tahvane1's point. |
|
We always participate on open source projects we utilize. When we test drive new tech we first deploy quick POC to evaluate production readiness (and true open source nature) of solution. We are running kubernetes and cnpg postgres plugin which is pretty common nowadays as far as I know. When evaluation stops for something like this already in the beginning... there probably won't be any PR either... I have not digged into this deeper but based on your answer it is using OS level CA storage so for me "easier" way to proceed for me would be just to provide my own docker image, but again that is more maintenance and more work to get even the POC running... |
|
Sure thing! That makes sense for your needs. I'll leave the task open - if folks need configurable root CA, we would take a PR. It would probably be pretty easy. |
|
I did PR for this #66 |
|
looks great! Thanks. That covers postgres (most common choice) I'll leave task open for covering mysql as well. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Any way to pass a self signed cert path to the db connection for self hosted convex?
2025-01-27T09:24:02.139891Z ERROR common::errors: Caught error (RUST_BACKTRACE=1 RUST_LOG=info,common::errors=debug for full trace): Error occurred while creating a new object: error performing TLS handshake: error:0A000086:SSL routines:tls_post_process_server_certificate:certificate verify failed:ssl/statem/statem_clnt.c:2091: (hostname mismatch): error performing TLS handshake: error:0A000086:SSL routines:tls_post_process_server_certificate:certificate verify failed:ssl/statem/statem_clnt.c:2091:
(hostname mismatch): error:0A000086:SSL routines:tls_post_process_server_certificate:certificate verify failed:ssl/statem/statem_clnt.c:2091: (hostname mismatch): error:0A000086:SSL routines:tls_post_process_server_certificate:certificate verify failed:ssl/statem/statem_clnt.c:2091:
2025-01-27T09:24:02.145306Z ERROR common::errors: Not reporting above error: SENTRY_DSN not set.
Error: Error occurred while creating a new object: error performing TLS handshake: error:0A000086:SSL routines:tls_post_process_server_certificate:certificate verify failed:ssl/statem/statem_clnt.c:2091: (hostname mismatch)
The text was updated successfully, but these errors were encountered: