Kratos- Social sign-in - How to use an oidc provider having a self signed signature?

Question

I'm trying to connect my hosted Kratos with an OIDC provider that has a non trusted certificate.

Is there an elegant way to fill to Ory Kratos a list trusted CA certificate ?

I'm facing this error when connecting to my app with my custom oidc provider:

"reason": "Unable to initialize OpenID Connect Provider: Get "https://my-custom-oidc-provider/.well-known/openid-configuration": x509: certificate signed by unknown authority"

score 2 · Accepted Answer · answered Feb 06 '23 at 09:10

2

Have a look at Where is Golang picking up root CAs from? to see where CAs are loaded from. There you can add it to the appropriate CA source for your setup.

answered Feb 06 '23 at 09:10

zepatrik

126
2

Kratos- Social sign-in - How to use an oidc provider having a self signed signature?

1 Answers1