gsh-digital-services/seaweedFS
5
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
5fa55072347829604ec88ec458c08466e7d8bb39
seaweedFS/weed/command
History
Chris Lu 92c2fc0d52 Add insecure_skip_verify option for HTTPS client in security.toml (#8781) 
* Add -insecureSkipVerify flag and config option for filer.sync HTTPS connections

When using filer.sync between clusters with different CAs (e.g., separate
OpenShift clusters), TLS certificate verification fails with "x509:
certificate signed by unknown authority". This adds two ways to skip TLS
certificate verification:

1. CLI flag: `weed filer.sync -insecureSkipVerify ...`
2. Config option: `insecure_skip_verify = true` under [https.client] in
   security.toml

Closes #8778

* Add insecure_skip_verify option for HTTPS client in security.toml

When using filer.sync between clusters with different CAs (e.g., separate
OpenShift clusters), TLS certificate verification fails. Adding
insecure_skip_verify = true under [https.client] in security.toml allows
skipping TLS certificate verification.

The option is read during global HTTP client initialization so it applies
to all HTTPS connections including filer.sync proxy reads and writes.

Closes #8778

---------

Co-authored-by: Copilot <copilot@github.com>
2026-03-26 11:42:47 -07:00
..
scaffold
Add insecure_skip_verify option for HTTPS client in security.toml (#8781)
2026-03-26 11:42:47 -07:00
admin.go
feat(admin): add -urlPrefix flag for subdirectory deployment (#8670)
2026-03-16 15:26:02 -07:00
autocomplete.go
chore: execute goimports to format the code (#7983)
2026-01-07 13:06:08 -08:00
backup.go
Rework volume compaction (a.k.a vacuuming) logic to cleanly support new parameters. (#8337)
2026-02-16 02:15:14 -08:00
benchmark.go
chore: execute goimports to format the code (#7983)
2026-01-07 13:06:08 -08:00
command.go
Move SQL engine and PostgreSQL server to their own binaries (#8417)
2026-02-23 16:27:08 -08:00
compact.go
Rework volume compaction (a.k.a vacuuming) logic to cleanly support new parameters. (#8337)
2026-02-16 02:15:14 -08:00
download.go
S3: prevent deleting buckets with object locking (#7434)
2025-11-03 15:27:20 -08:00
export.go
move to https://github.com/seaweedfs/seaweedfs
2022-07-29 00:17:28 -07:00
filer_backup_test.go
fix: extend ignore404Error to match 404 Not Found string from S3 sink… (#8741)
2026-03-23 11:59:34 -07:00
filer_backup.go
Add -filerExcludePathPattern flag and fix nil panic in -filerExcludeFileName (#8756)
2026-03-26 10:04:06 -07:00
filer_cat.go
Context cancellation during reading range reading large files (#7093)
2025-08-06 10:09:26 -07:00
filer_copy.go
Admin UI: replace gin with mux (#8420)
2026-02-23 19:11:17 -08:00
filer_meta_backup.go
Fix volume.fsck -forcePurging -reallyDeleteFromVolume to fail fast on filer traversal errors (#8015)
2026-01-14 21:37:50 -08:00
filer_meta_tail_elastic.go
go fix
2026-02-20 18:42:00 -08:00
filer_meta_tail_non_elastic.go
go fix
2026-02-20 18:42:00 -08:00
filer_meta_tail.go
chore: execute goimports to format the code (#7983)
2026-01-07 13:06:08 -08:00
filer_remote_gateway_buckets.go
fix(remote_gateway): prevent double-versioning when syncing to versioned central bucket (#8710)
2026-03-19 21:18:52 -07:00
filer_remote_gateway.go
chore: execute goimports to format the code (#7983)
2026-01-07 13:06:08 -08:00
filer_remote_sync_dir_test.go
fix(remote_gateway): prevent double-versioning when syncing to versioned central bucket (#8710)
2026-03-19 21:18:52 -07:00
filer_remote_sync_dir.go
fix(remote_gateway): prevent double-versioning when syncing to versioned central bucket (#8710)
2026-03-19 21:18:52 -07:00
filer_remote_sync.go
chore: execute goimports to format the code (#7983)
2026-01-07 13:06:08 -08:00
filer_replication.go
Added loadSecurityConfigOnce (#5792)
2024-07-16 09:15:55 -07:00
filer_sync_jobs_test.go
filer.sync: replace O(n) conflict check with O(depth) index lookups (#8772)
2026-03-25 15:43:25 -07:00
filer_sync_jobs.go
filer.sync: replace O(n) conflict check with O(depth) index lookups (#8772)
2026-03-25 15:43:25 -07:00
filer_sync_std.go
go fix
2026-02-20 18:42:00 -08:00
filer_sync_windows.go
filer.backup: escape colon from path on windows
2021-05-29 06:45:27 -07:00
filer_sync.go
Add -filerExcludePathPattern flag and fix nil panic in -filerExcludeFileName (#8756)
2026-03-26 10:04:06 -07:00
filer.go
Fix S3 signature verification behind reverse proxies (#8444)
2026-02-26 14:20:42 -08:00
fix.go
Add Kafka Gateway (#7231)
2025-10-13 18:05:17 -07:00
fuse_notsupported.go
go fix
2026-02-20 18:42:00 -08:00
fuse_std.go
Make weed-fuse compatible with systemd-based mount (#6814)
2026-03-18 12:18:40 -07:00
fuse.go
Fix the issue where fuse command on a node cannot specify multiple configuration directory paths (#7874)
2025-12-25 11:36:38 -08:00
iam.go
Embed IAM API into S3 server (#7740)
2025-12-14 16:02:06 -08:00
imports.go
migrate IAM policies to multi-file storage (#8114)
2026-01-26 11:28:23 -08:00
maintenance_capabilities.go
Refactor plugin system and migrate worker runtime (#8369)
2026-02-18 13:42:41 -08:00
master_follower.go
fix: use consistent telemetryUrl default in master.follower (#7809)
2025-12-17 12:27:43 -08:00
master_test.go
fix: improve raft leader election reliability and failover speed (#8692)
2026-03-18 23:28:07 -07:00
master.go
fix: improve raft leader election reliability and failover speed (#8692)
2026-03-18 23:28:07 -07:00
mini_plugin_test.go
fix tests
2026-03-15 09:44:14 -07:00
mini.go
feat(admin): add -urlPrefix flag for subdirectory deployment (#8670)
2026-03-16 15:26:02 -07:00
mount_darwin.go
Make weed-fuse compatible with systemd-based mount (#6814)
2026-03-18 12:18:40 -07:00
mount_freebsd.go
Make weed-fuse compatible with systemd-based mount (#6814)
2026-03-18 12:18:40 -07:00
mount_linux.go
Make weed-fuse compatible with systemd-based mount (#6814)
2026-03-18 12:18:40 -07:00
mount_notsupported.go
go fix
2026-02-20 18:42:00 -08:00
mount_std_test.go
go fix
2026-02-20 18:42:00 -08:00
mount_std.go
Implement POSIX file locking for FUSE mount (#8750)
2026-03-23 22:18:51 -07:00
mount.go
Make weed-fuse compatible with systemd-based mount (#6814)
2026-03-18 12:18:40 -07:00
mq_agent.go
Admin UI: Add message queue to admin UI (#6958)
2025-07-11 10:19:27 -07:00
mq_broker.go
Add consistent -debug and -debug.port flags to commands (#7816)
2025-12-18 17:44:36 -08:00
mq_kafka_gateway.go
Add Kafka Gateway (#7231)
2025-10-13 18:05:17 -07:00
plugin_worker_test.go
plugin worker: support job type categories (all, default, heavy) (#8547)
2026-03-07 18:30:58 -08:00
s3.go
Fix S3 signature verification behind reverse proxies (#8444)
2026-02-26 14:20:42 -08:00
scaffold_test.go
fix test
2019-11-28 18:44:27 -08:00
scaffold.go
Add credential storage (#6938)
2025-07-02 18:03:17 -07:00
server.go
Add volume dir tags and EC placement priority (#8472)
2026-03-01 10:22:00 -08:00
sftp.go
Fix SFTP file upload failures with JWT filer tokens (#8448)
2026-02-25 14:30:21 -08:00
shell.go
chore: execute goimports to format the code (#7983)
2026-01-07 13:06:08 -08:00
update_full.go
go fix
2026-02-20 18:42:00 -08:00
update.go
chore: execute goimports to format the code (#7983)
2026-01-07 13:06:08 -08:00
upload.go
merge current message queue code changes (#6201)
2024-11-04 12:08:25 -08:00
version.go
chore: execute goimports to format the code (#7983)
2026-01-07 13:06:08 -08:00
volume_test.go
move to https://github.com/seaweedfs/seaweedfs
2022-07-29 00:17:28 -07:00
volume.go
Add data file compaction to iceberg maintenance (Phase 2) (#8503)
2026-03-15 11:27:42 -07:00
webdav.go
command: implement graceful shutdown for mini cluster
2026-01-28 10:36:19 -08:00
worker_runtime.go
plugin worker: support job type categories (all, default, heavy) (#8547)
2026-03-07 18:30:58 -08:00
worker_test.go
feat(plugin): EC shard balance handler for plugin worker (#8629)
2026-03-14 21:34:53 -07:00
worker.go
plugin worker: support job type categories (all, default, heavy) (#8547)
2026-03-07 18:30:58 -08:00