Patrick Alves
11/01/2022, 1:45 PM❯ PREFECT_API_URL=<https://prefect.xxx.xxx/api> prefect deployment ls
I am getting:
File "/home/patrick/miniconda3/envs/prefect/lib/python3.8/ssl.py", line 944, in do_handshake
self._sslobj.do_handshake()
ssl.SSLCertVerificationError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1131)
An exception occurred.
• I've tried set envs to disable certificate verification: PYTHONHTTPSVERIFY=false
• Tried to add the server certificate (*.xxx.xxx.crt) on the server copying the CRT file /usr/local/share/ca-certificates/
and update the CA store: sudo update-ca-certificates
Nothing works.
Any tip to solve this?Kalise Richmond
11/01/2022, 2:30 PMPatrick Alves
11/01/2022, 2:55 PMNate
11/01/2022, 3:08 PMPatrick Alves
11/01/2022, 3:10 PMNate
11/01/2022, 3:22 PMpip install --upgrade certifi
otherwise, I would search someplace like askubuntu - there's likely to be a solution there that'll work for youPatrick Alves
11/01/2022, 3:25 PMcertifi
package
Anyway, thanks for the helpQ
11/01/2022, 5:52 PMhttpx
, so you might wanna try setting SSL_CERT_FILE
OR SSL_CERT_DIR
instead
Tried to add the server certificate (*.xxx.xxx.crt) on the server copying the CRT file /usr/local/share/ca-certificates/ and update the CA store: sudo update-ca-certificatesIIRC neither
requests
nor httpx
use your system ca-certs (while e.g. curl does), those libs default to using the certificate bundle distributed via certifi
, but since certifi
only ships public ca-certs, while your internal server's cert is likely signed by a local ca, neither update-ca-certificates
nor updating certifi
would help.