Read more

Making httpclient use the operating system's SSL cert store

Henning Koch
March 01, 2018Software engineer at makandra GmbH
Say thanks

The httpclient Show archive.org snapshot gem comes with a custom SSL cert store.

Illustration online protection

Rails Long Term Support

Rails LTS provides security patches for old versions of Ruby on Rails (2.3, 3.2, 4.2 and 5.2)

  • Prevents you from data breaches and liability risks
  • Upgrade at your own pace
  • Works with modern Rubies
Read more Show archive.org snapshot

While an customizable, application-level cert store is great when you need to deal with broken or self-signed certificates, you usually want to use the cert store from the underlying Linux. The Linux cert store is updated periodically while httpclient's cert store goes out of date and will eventually not be able to verify certs.

To use the cert store from the underlying operating system:

client = HTTPClient.new
client.ssl_config.cert_store.set_default_paths
client.get('https://....')
License for source code
Posted by Henning Koch to makandra dev (2018-03-01 14:17)
This website uses short-lived cookies to improve usability.
or learn more