Amir Rossert
Reputation: 226
Pika connecting using SSL with no certificate file
I'm trying to use pika to connect to RabbitMQ using SSL (self signed).
The problem is that the connect not failing if I do not give the certificate file to pika.
This is my code:
import pika
import urllib
connection = pika.BlockingConnection(pika.URLParameters("amqps://guest:[email protected]:25585"))
channel = connection.channel()
channel.queue_declare(queue='hello')
channel.basic_publish(exchange='',
routing_key='hello',
body='Hello World!')
print(" [x] Sent 'Hello World!'")
connection.close()
And this is my rabbitmq.config:
{tcp_listeners, []},
{ssl_listeners, [25585]},
{ssl_options, [{cacertfile, "/etc/rabbitmq/certs/cacert.pem"},
{certfile, "/etc/rabbitmq/certs/cert.pem"},
{keyfile, "/etc/rabbitmq/certs/key.pem"},
{verify, verify_peer},
{versions, ['tlsv1.2', 'tlsv1.1', 'tlsv1']},
{fail_if_no_peer_cert, false}]},
I have disabled TCP connection and enabled the SSL, why is the connection not failing?
Upvotes: 1
Views: 8940
Answers (1)
Rama Rao Ganji
Reputation: 1
It's because of this configuration in the server: {fail_if_no_peer_cert, false}
Change it to : {fail_if_no_peer_cert, true}
It means drop the connection if there is no certificate presented by Client.
Upvotes: 0
Related Questions
- TLS-Encrypted Connection with RabbitMQ Using pika
- RabbitMQ' pika handshaking fails when SSL is set
- Getting error when Python connects with RabbitMQ
- connect to rabbitmq SSLError: [SSL: SSLV3_ALERT_HANDSHAKE_FAILURE] sslv3 alert handshake failure (_ssl.c:1108)
- how to publish msg to rabbitmq server with self signed certificate with python pika?
- Authenticating rabbitmq using ExternalCredentials
- RabbitMQ: handshake error when attempting to use SSL certificates
- Unable to connect to remote rabbitmq server using pika
- How to connect pika to rabbitMQ remote server? (python, pika)
- How to debug "pika.exceptions.AuthenticationError: EXTERNAL" error when establishing TLS connection to RabbitMQ?