--use-system-ca support for intermediate certificates on Windows
#57163
Labels
feature request
Issues that request new features to be added to Node.js.
Comments
timja
added
the
feature request
github-project-automation
bot
moved this to Awaiting Triage
in Node.js feature requests
|
FYI @joyeecheung |
5 tasks
|
Raised #57164 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
What is the problem this feature will solve?
Third-party SaaS TLS proxies (e.g. ZScaler) will often be provided with an Intermediate CA certificate and not the organisation root CA certificate.
macOS supports Intermediate CA certificates and we should bring this to Windows as well.
See #56833 (comment)
What is the feature you are proposing to solve the problem?
I'm researching and looking for other implementations, so far I've verified locally that when I add:
In the Certificates - Current Use store.
See Chromium source code: https://github.com/chromium/chromium/blob/98f89988c9774d0e138a0724aa64c46187203a77/net/cert/internal/trust_store_win.cc#L220-L222
Chrome works and I can access https://localhost:8443 from my test repository that was used for the macOS implementation: https://github.com/timja/openjdk-intermediate-ca-reproducer
What alternatives have you considered?
No response
The text was updated successfully, but these errors were encountered: