emredjan commented on issue #55147: URL: https://github.com/apache/airflow/issues/55147#issuecomment-3265068909
> There is also https://airflow.apache.org/docs/apache-airflow/stable/configurations-ref.html#ssl-cert (and key) configuration where you can explicilty provide certificate used by the api-server in configuration. I already mentioned in the issue description that I am already using those configuration items (AIRFLOW__API__SSL_CERT and KEY), of course. But when those are enabled, api-server <-> worker communication fails, because the certificates we're using are self-signed with our corporate CA (we have no other option). There remains no way (for our configuration at least) to use SSL with airflow 3 with our corporate signed CAs, outside of overwriting that file, so I believe this issue is not a duplicate and very much relevant. Besides the obvious SSL config items for API server (AIRFLOW__API__SSL_CERT and KEY), airflow should provide an option for a custom CA to validate this certs against and use that option on all `httpx` calls, which would allow for corporate CA signed certificates. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
