Comments on: Ruby and SSL Certificate Validation http://blog.kabisa.nl/2009/12/04/ruby-and-ssl-certificate-validation/ The Ruby on Rails Experts Sat, 03 Jul 2010 14:41:50 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Ariejan http://blog.kabisa.nl/2009/12/04/ruby-and-ssl-certificate-validation/comment-page-1/#comment-10 Ariejan Fri, 04 Dec 2009 14:54:31 +0000 http://blog.kabisa.nl/?p=31#comment-10 In a recent Rails 2.3.5 and Ruby 1.8.7 project, I monkey-patched Net:HTTP in environment.rb (maybe it can be moved to a separate initializer). I put the cacert.pem file in the config directory. <pre lang="ruby">class Net::HTTP alias_method :old_initialize, :initialize def initialize(*args) old_initialize(*args) @ssl_context = OpenSSL::SSL::SSLContext.new @ssl_context.verify_mode = OpenSSL::SSL::VERIFY_PEER @ssl_context.ca_file = File.join(RAILS_ROOT, 'config', 'cacert.pem') end end</pre> Whenever SSL is used, the cacert.pem file is loaded. Awesome! In a recent Rails 2.3.5 and Ruby 1.8.7 project, I monkey-patched Net:HTTP in environment.rb (maybe it can be moved to a separate initializer).

I put the cacert.pem file in the config directory.

class Net::HTTP
  alias_method :old_initialize, :initialize
  def initialize(*args)
    old_initialize(*args)
    @ssl_context = OpenSSL::SSL::SSLContext.new
    @ssl_context.verify_mode = OpenSSL::SSL::VERIFY_PEER
    @ssl_context.ca_file = File.join(RAILS_ROOT, 'config', 'cacert.pem')
  end
end

Whenever SSL is used, the cacert.pem file is loaded. Awesome!

]]>