[Enhancement] Handle self signed cert, add provision to skip TLS vali…

…dation (#1) *Changes are: **Handle cert properly. **Add provison to skip TLS validation. **Handle self signed cert. Co-authored-by: Aravind N <[email protected]>
OpsVerseIO · Feb 8, 2024 · 3fa8cb6 · 3fa8cb6
1 parent 864df8a
commit 3fa8cb6
Show file tree

Hide file tree

Showing 4 changed files with 40 additions and 10 deletions.
diff --git a/dist/index.js b/dist/index.js
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -67,7 +67,8 @@
     },
     "dependencies": {
         "@actions/core": "^1.10.1",
-        "axios": "^1.6.7"
+        "axios": "^1.6.7",
+        "https": "^1.0.0"
     },
     "devDependencies": {
         "@types/jest": "^29.5.11",

diff --git a/src/main.ts b/src/main.ts
@@ -1,13 +1,15 @@
 import * as core from '@actions/core'
 const axios = require('axios')
 import { OpaResponse } from './opa-response'
+import { Agent } from 'https'
 
 export async function run(): Promise<void> {
   try {
     const opaServerUrl = core.getInput('opaServerUrl')
     const opaServerAuthToken = core.getInput('opaServerAuthToken')
     const opaServerInput = core.getInput('opaServerInput')
     const opaServerPackageName = core.getInput('opaServerPackageName')
+    const skipTlsValidation = core.getInput('skipTlsValidation')
 
     const headers = {
       Authorization: `Bearer ${opaServerAuthToken}`,
@@ -19,11 +21,22 @@ export async function run(): Promise<void> {
     core.info(`📥 Input to server: ${opaServerInput}`)
     core.info(`-----------------------------------------`)
 
-    const response = await axios.post(
-      `${opaServerUrl}/v1/data/${opaServerPackageName}`,
-      { opaServerInput },
-      { headers }
-    )
+    const httpsAgent = new Agent({
+      rejectUnauthorized: skipTlsValidation ? false : true
+    })
+    skipTlsValidation
+      ? core.warning(
+          '❗🔓 Skip TLS Validation enabled. Please be careful while using this.'
+        )
+      : core.info('💚🔒 Skip TLS Validation disabled.')
+
+    const response = await axios
+      .create({ httpsAgent })
+      .post(
+        `${opaServerUrl}/v1/data/${opaServerPackageName}`,
+        { opaServerInput },
+        { headers }
+      )
     if (response.status === 200) {
       const opaResponseObj = response.data as OpaResponse
       // core.info(`Response from OPA Server: ${JSON.stringify(opaResponseObj)}`)