Skip to content
/ node-native-certs Public

Load TLS root certificates from the system trust store

License

ISC license
8 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

bnoordhuis/node-native-certs

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
src
src
 
 
.gitignore
.gitignore
 
 
.rustfmt.toml
.rustfmt.toml
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
build.rs
build.rs
 
 
index.js
index.js
 
 
package.json
package.json
 
 
test.js
test.js
 
 

Repository files navigation

node-native-certs

Load TLS root certificates from the system trust store.

  • Windows: loads certificates from the system certificate store.

  • macOS: loads certificates from the keychain.

  • Linux, BSD: looks for the OpenSSL CA bundle in the usual places. Honors the SSL_CERT_FILE and SSL_CERT_DIR environment variables.

The SSL_CERT_FILE environment variable overrides the default trust store on all platforms.

const https = require("https")
const nativeCerts = require("native-certs")
const ca = nativeCerts()

const req = https.get({ca, host: "google.com", path: "/"})
// do something with `req`

Node.js does not support globally overriding the built-in root certificates but the list can be extended through the NODE_EXTRA_CA_CERTS environment variable:

$ node -e 'fs.writeFileSync("cas.pem", require("native-certs")().join("\n"))'

$ NODE_EXTRA_CA_CERTS=cas.pem node app.js

Performance consideration: loading certificates can be slow. Cache 'em.

license

ISC, see the LICENSE file.

About

Load TLS root certificates from the system trust store

Resources

Readme

License

ISC license
Activity

Stars

8 stars

Watchers

5 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages