如何使用证书golang发送https请求

I have a server which has a rest API running over https. I want to make a call to this rest api in my application which is running in different port but since this is over https I am getting

Post https://localhost:8080/api/v1/myapi: x509: certificate signed by unknown authority

I have 2 files pulic_key.pem and private_key which can used to verify the certificate. How can verify certificate while sending rest request using golang? I am using &http.Client{} to send a rest request. Here is what I am doing to ignore the certificate right now.

tr := &http.Transport{
TLSClientConfig: &tls.Config{InsecureSkipVerify: true},
}

client := &http.Client{Transport: tr}

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

2条回答默认最新

dongwang788787 2016-08-08 09:26

关注

You need to add CA of your certificate to your transport like:

package main

import (
    "crypto/tls"
    "io/ioutil"
    "log"
    "net/http"
    "crypto/x509"
)

func main() {
    caCert, err := ioutil.ReadFile("rootCA.crt")
    if err != nil {
        log.Fatal(err)
    }
    caCertPool := x509.NewCertPool()
    caCertPool.AppendCertsFromPEM(caCert)

    client := &http.Client{
        Transport: &http.Transport{
            TLSClientConfig: &tls.Config{
                RootCAs:      caCertPool,
            },
        },
    }

    _, err := client.Get("https://secure.domain.com")
    if err != nil {
        panic(err)
    }
}

But I guess you just haven't created CA to make your certificates. Here is the list of commands without explanation which can help you to make certificates signed with your own CA. For more information, you can Google it.

Generating CA

openssl genrsa -out rootCA.key 4096
openssl req -x509 -new -key rootCA.key -days 3650 -out rootCA.crt

Generate certificate for secure.domain.com signed with created CA

openssl genrsa -out secure.domain.com.key 2048
openssl req -new -key secure.domain.com.key -out secure.domain.com.csr
#In answer to question `Common Name (e.g. server FQDN or YOUR name) []:` you should set `secure.domain.com` (your real domain name)
openssl x509 -req -in secure.domain.com.csr -CA rootCA.crt -CAkey rootCA.key -CAcreateserial -days 365 -out secure.domain.com.crt

本回答被题主选为最佳回答 , 对您是否有帮助呢?

查看更多回答(1条)

报告相同问题？

关注问题

如何使用证书golang发送https请求 ssl
2016-08-08 06:45

回答 2 已采纳 You need to add CA of your certificate to your transport like: package main import ( "crypto
golang：发送带有证书的http请求 https
2014-06-30 18:12

回答 2 已采纳 This is likely a problem with the remote server you're accessing, but it is a known problem (with
使用标头在Golang中发送POST请求 http
2016-10-12 19:15

回答 1 已采纳 You need to add a content type to your request. You said http.PostForm worked so let's look at th
Golang发送HTTP、HTTPS请求（包含Token和证书的请求）
2020-12-17 16:41

MiKogy_的博客 Golang发送HTTP、HTTPS请求前景提要正文1. 最简单的 HTTP 请求 —— Get 方法使用场景代码解释说明2. 难度升级——加入证书的 HTTPS 请求使用场景代码解释说明3. 在 Header 中添加 token 的 HTTPS 请求使用场景代码...
Golang发送http请求发送两次而不是一次 http
2017-04-13 13:19

回答 1 已采纳 As in my edit, the cause was AVG anti virus. There was nothing in the console log indicating any p
如何为Golang HTTP请求发送嵌套标头 http https
2018-06-26 19:49

回答 1 已采纳 I just ran your Ruby code and found out that it doesn't actually send any headers, instead it adds
GoLang通过POST请求发送文件
2017-08-07 07:40

回答 2 已采纳 os.Open will open a file, since the file doesn't exist you will get an error. Use os.Create instea
golang 实现https请求
2018-12-24 09:43

Programmer_FuQiang的博客首先我们先来创建一个http请求 //http.go package main import ( "fmt" "net/http" ) func handler(w http.ResponseWriter, r *http.Request) { fmt.Fprintf(w, "这个是http...
简单的HTTPS请求：Golang返回505，Python和Chrome运行正常 https
2018-09-21 01:39

回答 2 已采纳 I figured out the issue eventually by decrypting the traffic in Wireshark. The URL in my Go implem
使用golang发送图像而不下载
2018-04-10 21:21

回答 1 已采纳 You don't need to create a temporary file. Remember that http.Request takes an io.Reader (or an io
http PUT请求以golang上传zip文件 http
2018-12-11 07:25

回答 1 已采纳 This is a working example. Most likely, it comes down to the fact that the server is a bit simple
golang实现https请求跳过证书验证
2018-12-17 22:43

wade3015的博客请求 https 网站跳过证书验证我在用 Golang 访问 IPPBX 的管理页面时出现以下错误，因为证书是未经过认证的，而是自己创建的。错误信息：Get ...
向Golang API发送请求以发送JSON和严格认证的JSON json
2017-12-20 08:40

回答 1 已采纳 When sending JSON to any http server you always have to use JSON.stringify(). Not doing so will r
golang post https 请求json数据
2023-03-02 20:41

zngfue的博客在发送请求时，我们需要确保关闭响应主体，以避免资源泄漏。HTTPS是基于SSL/TLS的安全协议，可以保护数据在传输过程中不被篡改或窃取。在Go语言中发送HTTPS请求并传递JSON数据，可以使用标准库中的。在上面的代码中...
Golang https
2022-12-04 10:45

云满笔记的博客 golang https 请求怎么跳过证书验证, 两种方法发起 https 请求简单方法: package main import ( "log" "net/http" ) func main() { var resp, err = http.Get("https://www.baidu.com") if err != nil { log...
没有解决我的问题, 去提问

悬赏问题

¥15 chaquopy python 安卓
¥50 Kubernetes&Fission&Eleasticsearch
¥15 有没有帮写代码做实验仿真的
¥15 報錯：Person is not mapped，如何解決？
¥30 vmware exsi重置后登不上
¥15 易盾点选的cb参数怎么解啊
¥15 MATLAB运行显示错误，如何解决？
¥15 c++头文件不能识别CDialog
¥15 Excel发现不可读取的内容
¥15 关于#stm32#的问题：CANOpen的PDO同步传输问题

码龄粉丝数原力等级 --

如何使用证书golang发送https请求

2条回答默认最新

码龄粉丝数原力等级 --

悬赏问题

如何使用证书golang发送https请求

2条回答 默认 最新

悬赏问题

2条回答默认最新