Certificate that doesn't go through the chain is not fatal, just send the warning over json.

2019-02-12 21:14:23 +03:00
parent 30050bf278
commit 57a33654f7
2 changed files with 3 additions and 2 deletions
--- a/control.go
+++ b/control.go
@@ -1147,8 +1147,8 @@ func validateCertificates(data tlsConfig) (tlsConfig, error) {
 		mainCert := parsedCerts[0]
 		_, err := mainCert.Verify(opts)
 		if err != nil {
-			// TODO: let self-signed certs through
-			return data, errorx.Decorate(err, "Your certificate does not verify")
+			// let self-signed certs through
+			data.WarningValidation = fmt.Sprintf("Your certificate does not verify: %s", err)
 		}
 		// spew.Dump(chains)