Trust Root CA of Eventing curl Destination Service

FarisAhmed · March 8, 2021, 3:59pm

Hi,

I have the following environment:

Couchbase server 6.6 enterprise edition with eventing service enabled
Https REST service https://my-service.company.com with an X509 Certificate issued to my-service.company.com by certificate authority my-company-ca
OnUpdate event handler uses curl to call https://my-service.company.com

How can I protected my curl call to my-service.company.com against man-in-the-middle attacks?
How can I make the curl call trust the my-company-ca root CA?

Regards,
Faris Ahmed

Siri · April 12, 2021, 4:24pm

Hi Faris,

AFAIK, eventing does not handle these directly and delegates it to the OS. If you can configure your OS trust store to accept the certificate in question, eventing curl should as well.

Best Regards,
Siri