📧 fix: Correct Handling of Self-Signed Certificates in sendEmail (d…

…anny-avila#2148) - note: To put it in a different way, if you put rejectUnauthorized: true, it means that self-signed certificates should not be allowed. This means, that EMAIL_ALLOW_SELFSIGNED is set to false
aitok-ai · Mar 20, 2024 · acc39e6 · acc39e6
1 parent 13d0b70
commit acc39e6
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/server/utils/sendEmail.js b/server/utils/sendEmail.js
@@ -2,6 +2,7 @@ const fs = require('fs');
 const path = require('path');
 const nodemailer = require('nodemailer');
 const handlebars = require('handlebars');
+const { isEnabled } = require('~/server/utils');
 const logger = require('~/config/winston');
 
 const sendEmail = async (email, subject, payload, template) => {
@@ -13,7 +14,7 @@ const sendEmail = async (email, subject, payload, template) => {
       requireTls: process.env.EMAIL_ENCRYPTION === 'starttls',
       tls: {
         // Whether to accept unsigned certificates
-        rejectUnauthorized: process.env.EMAIL_ALLOW_SELFSIGNED === 'true',
+        rejectUnauthorized: !isEnabled(process.env.EMAIL_ALLOW_SELFSIGNED),
       },
       auth: {
         user: process.env.EMAIL_USERNAME,