Comments (5)
Hi asylvest
- We just defer to the TLS implementation on your system and don't currently support this override.
Which platform are you on?
We have an override used for the android tests for curl https://github.com/awslabs/aws-sdk-cpp/blob/b46c1f4c185ce64c4c6d2e85bfd04ca8c346c3af/aws-cpp-sdk-core/source/http/curl/CurlHttpClient.cpp#L174.
2.Yes, just set the endpointOverride.
3. aws-sdk-cpp ONLY supports sigv4. All new AWS services only support sigv4 and ALL AWS services support sigv4 in all regions so we have no reason to support older signing methods.
- Yes, this is exactly the same as the other SDKS.
- No, we currently have no dotfile overrides like boto. The only functionality like this we support is configuring credential profiles in the
~/.aws/credentials
file.
In regards to 1, feel free to open an issue if this is a feature you require.
from aws-sdk-cpp.
Preston,
Thanks for all the info. I am on Linux (some chance I will care about Windows eventually but Linux is what matters for the medium term) and using libcurl with the SDK. I'm not very familiar with libcurl or CA certs in general but based on the override you pointed me to and a little Googling, are you saying I can do curl_easy_setopt(handle, CURLOPT_CAPATH, "/path/to/cert.pem")
and curl will take care of this aspect? If so, the catch is that from what I see, m_curlHandleContainer
is private in CurlHttpClient
so I don't have any way to do this in my application code right (well, I guess I could hardcode it via TEST_CERT_PATH
at SDK compile time)? No big deal - if you can verify that I'm following what you're saying, I'll recompile the SDK to use AWS_CA_BUNDLE
to point to my cert, confirm I can get things working, and then put in a pull request. From what you're saying, sounds like this should be a one-liner (for the libcurl implementation at least).
from aws-sdk-cpp.
You should get the ca stuff for free. Curl gives you bundle for free when
yoy install. You shouldn't need to override anything. Have you tried just
using the sdk and seeing what happens?
On Dec 7, 2015 8:07 PM, "Adam Sylvester" [email protected] wrote:
Preston,
Thanks for all the info. I am on Linux (some chance I will care about
Windows eventually but Linux is what matters for the medium term) and using
libcurl with the SDK. I'm not very familiar with libcurl or CA certs in
general but based on the override you pointed me to and a little Googling,
are you saying I can do curl_easy_setopt(handle, CURLOPT_CAPATH,
"/path/to/cert.pem") and curl will take care of this aspect? If so, the
catch is that from what I see, m_curlHandleContainer is private in
CurlHttpClient so I don't have any way to do this in my application code
right (well, I guess I could hardcode it via TEST_CERT_PATH at SDK
compile time)? No big deal - if you can verify that I'm following what
you're saying, I'll recompile the SDK to use AWS_CA_BUNDLE to point to my
cert, confirm I can get things working, and then put in a pull request.
From what you're saying, sounds like this should be a one-liner (for th e
libcurl implementation at least).—
Reply to this email directly or view it on GitHub
#56 (comment).
from aws-sdk-cpp.
Yes you are correctly following what I'm saying, but lets make sure this is the correct thing for you to do.
We did not make this easy because you should not NEED to override the certs. Why do you need to override the cert bundle?
from aws-sdk-cpp.
After doing a lot of diagnosing and starting to write a very long detailed post here, I realized I was actually doing something else incorrectly here and that was the source of my connection problem. I am not quite sure how/where curl is picking my certs up from (I don't see them in the location where curl appears to be looking), but at this point I have a hello world application that can successfully query SQS, so I will remain blissfully ignorant of curl specifics and be happy at the end result. I assume the other AWS services will work very similarly but will post any follow-up issues/questions I run into.
Thanks for the help (and for putting the C++ SDK together!).
from aws-sdk-cpp.
Related Issues (20)
- Failed to upload file using transfer manager to S3 bucket. HOT 38
- transcribestreaming SIGSEGV of library in CRTHttpClient::MakeRequest -> ostream::write HOT 4
- Tracing miss span context with transfer manager or thread executor HOT 1
- Support for setting CURLSSLOPT_NATIVE_CA on Windows HOT 5
- Unresolved External Symbols when using Static Libraries HOT 9
- s2n links static version libcrypto HOT 2
- How to Specify TCP socket buffer size hints HOT 4
- Liveness / performance bug in PooledThreadExecutor HOT 3
- Windows Cmake find_package broken without AWSSDKConfigVersion.cmake HOT 5
- LNK 2001 Errors: vcpkg with Static Libraries HOT 6
- example streaming app fails with "A complete signal was sent without the preceding empty frame" HOT 5
- Aws::ShutdownAPI hangs when S3Crt is used HOT 3
- win7 system cannot upload minio issue HOT 2
- AWSAuthSignerTest tests failing on Apple Silicon build HOT 2
- Lex v2 not working (i.e. incredibly slow) on debian 12 HOT 11
- aws-sdk-cpp failed to build on vcpkg HOT 3
- Third party Build failing HOT 7
- Static ALLOCATION_TAG and SERVICE_NAME symbols break DelayLoadDLLs on windows HOT 5
- Unable to compile with gcc 13 on AMD64 HOT 2
- macOS Sonoma 14.2: Failed to connect to Cognito & Lambda endpoints (Curl error code 35) HOT 8
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from aws-sdk-cpp.