这是我的代码
os.environ['REQUESTS_CA_BUNDLE'] = os.path.join('/path/to/','ca-own.crt')
s = requests.Session()
s.cert = ('some.crt', 'some.key')
s.get('https://some.site.com')
最后一条指令返回:
requests.exceptions.SSLError: HTTPSConnectionPool(host='some.site.com', port=443): Max retries exceeded with url: / (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1131)')))有卷曲:
curl --cacert ca-own.crt --key some.key --cert some.crt https://some.site.com返回正常的 html 代码。
如何发出 python requests.Session 向端点发送正确的证书?
P.S.如果我添加以下内容也会出现同样的情况
s.verify = 'some.crt'
或
cat some.crt ca-own.crt > res.crts.verify = 'res.crt'
P.P.S.
cat some.crt some.key > res.pems.cert = "res.pem"
requests.exceptions.SSLError: HTTPSConnectionPool(host='some.site.com', port=443): Max retries exceeded with url: / (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1131)')))cat ca-own.crt some.crt some.key > res.pems.cert = "res.pem"
requests.exceptions.SSLError: HTTPSConnectionPool(host='some.site.com', port=443): Max retries exceeded with url: / (Caused by SSLError(SSLError(116, '[X509: KEY_VALUES_MISMATCH] key values mismatch (_ssl.c:4067)')))如果您将
verify=Falsesession = requests.Session()
session.verify = "/path/to/issuer's certificate"(CA certificate)
session.get('https://some.site.com')
你可以试试这个
with requests.Session() as session:
session.verify = "your CA cert"
response = session.get(url, cert=('path of client cert','path of client key'))