FEAT: connect securely to servers that present certs signed by real CAs #2244
Labels
need-more-info ❔
Debug logs or platform needed before we can look into this issue
Comments
|
Hey! What OS are you on, and which version of the app? Eg Ubuntu, Snap version |
rathboma
added
the
need-more-info ❔
|
windows |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Is your feature request related to a problem? Please describe.
There are lots of services now that will stand up databases that present certificates that are signed by real certificate authorities (CAs). My system already trusts those certs. It would be nice if beekeeper studio could check the server presented cert against my system trust store just like how the
psqlcli works.Describe the solution you'd like
I would like beekeeper studio to let me connect to things like neon.tech hosted databases with full ssl verification (sslmode=verify-full) without having to mess with copy and pasting like some globalsign root cert around.
Describe alternatives you've considered
I could use the
opensslcli to dump the cert the server presents and copy that to a file and point beekeeper at it. I think most people just let it connect with sslmode=require though and trust anything the server presents that looks like a cert.Additional context
Database type, if appropriate
postgresql
The text was updated successfully, but these errors were encountered: