www.digitalmars.com         C & C++   DMDScript  

digitalmars.D.announce - security update for dlang-requests

Hello,

This is just notification about next dlang-requests release, 
where ssl peer verification will be turned on by default(instead 
of 'off'). This can lead to ssl exceptions if you send requests 
to servers with self-signed certificates for example.

How to fix in case of problems:

1) you can turn verification off:

     auto rq = Request();
     rq.sslSetVerifyPeer(false);

2) you can make your certificate "trusted". For example for 
openssl on debian: 
https://unix.stackexchange.com/questions/90450/adding-a-self-signed-certificate-to-the-trusted-list

3) you can call sslSetCaCert to add it for single requests call:

    rq.sslSetCaCert("ca.crt");

Hope this helps, if not - please post bugreports to github 
https://github.com/ikod/dlang-requests
Apr 21 2018