How Can I Verify My Selfsigned Certificate When Using Easywebdav?

October 27, 2023 Post a Comment

I know how to connect to my owncloud with python, by using easywebdav. I'm using a selfsigned certificate and verify_ssl=False, but that makes me vulnerable to man-in-the-middle at

Solution 1:

You already have your server certificate in $HOME/.pki/CA/cacert.pem. But to be complete for others, you can get a certificate with python like this:

import ssl
import os
# get the https certificate
cert = ssl.get_server_certificate(('example.com', 443))
# append it to my personal chain
pem_path = os.path.expanduser('~/.pki/CA/cacert.pem')
withopen(pem_path, 'a+') as f:
    f.write(cert)

Then to use it in easywebdav. Easywebdav builds on requests. And the verify_ssl is used as requests.Session.verifyRequests docs say it accepts a boolean (True uses the default chain) or a path to a CA_BUNDLE.

So this should work:

importeasywebdavpem_path= os.path.expanduser('~/.pki/CA/cacert.pem')
webdav = easywebdav.connect('example.com', username='user', password='pass', 
                            protocol='https', port=443,
                            verify_ssl=pem_path)
...

Python Guru

How Can I Verify My Selfsigned Certificate When Using Easywebdav?

Solution 1:

Post a Comment for "How Can I Verify My Selfsigned Certificate When Using Easywebdav?"