I tried to fetch data using restApi(using GET call), the thing is we have added a wildcard certificate to our platform which provides this API to access. I believe due to this, I am not able to retrieve any data Ignition throws an error as follows,
Error running action 'dom.onClick' on test@C/root/XYChart: Traceback (most recent call last): File "<function:runAction>", line 11, in runAction File "<function:runAction>", line 11, in runAction at com.inductiveautomation.ignition.common.script.builtin.http.JythonHttpClient.send(JythonHttpClient.java:103) at com.inductiveautomation.ignition.common.script.builtin.http.JythonHttpClient.get(JythonHttpClient.java:306) at jdk.internal.reflect.GeneratedMethodAccessor144.invoke(Unknown Source) at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) at java.base/java.lang.reflect.Method.invoke(Unknown Source) java.io.IOException: java.io.IOException:
Are there any arguments like verify = False to skip the SSL verification or any other workarounds to add the certificate to Ignition's trusted certificate store?
Help would be appreciated
Try have a look at the function system.net.httpGet - Ignition User Manual 8.1 - Ignition Documentation.
It has a boolean flag to bypass certification validation.
thank you so much for your reply. Indeed it helped me a lot...
By any chance can we customize the logs which are triggered by the default mechanism?
because If I bypass SSL it triggers the log each time.
No, because it's just a logger, and it's not wrong.
If you have a custom certificate to trust, the right way to go about things is to add it to your local environment trust store (the gateway/designer/vision client). Bypassing all SSL verification is a completely different, much wider security opening than simply accepting one specific certificate.
Also note: system.net.httpGet is 'soft' deprecated and likely to be fully deprecated in 8.3.
system.net.httpClient() is superior in basically every way, and has a corresponding bypass_cert_validation flag that will do the same disabling of all SSL verification (with the same warning in the logs).
Thank you so much for the docs links. @PGriffith
I am new to Ignition development, are there any official pages we can track/be aware of any changes like deprecation of APIs?