Related

WordPress database error: [Expression #1 of ORDER BY clause is not in SELECT list... Question Question
Private connection to Managed DB not working from within same region droplet. Question Question

Question

Can't connect via NodeJS - Error: self signed certificate in certificate chain

Posted December 9, 2019 6.5k views
DigitalOcean Managed MySQL Database

Here is my connection code : 

        this.connection = mysql.createConnection({
            host: 'xxxx.db.ondigitalocean.com',
            user: 'doadmin',
            port: 25060,
            password: 'xxxx',
            dialect: 'mysql',
            force: true,
            ssl: {
                cert: fs.readFileSync(__dirname + '/ca-certificate.crt'),
            }

        });

Here is the error im getting

(node:5676) UnhandledPromiseRejectionWarning: Error: self signed certificate in certificate chain
Add a comment
nickynick
By:
nickynick
Add a comment

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
3 answers
KFSys December 10, 2019

Hi @nickynick,

Usually when experiencing this issue is when you are using a SELF SIGNED certificate, is that correct?

If that’s the case, add NODE_TLS_REJECT_UNAUTHORIZED='0' as an environment variable wherever you are running node or running node directly with NODE_TLS_REJECT_UNAUTHORIZED='0'node app.js

This instructs Node to allow untrusted certificates (untrusted = not verified by a certificate authority)

I would not recommend setting this environment variable in production as your application would not be trusted by users. You can use free Let’s Encrypt certificates.

Regards,
KDSys

Reply Report
Architecd January 4, 2020

I’m experiencing the exact same issue.
The certificate provided by DO doesn’t make a connection possible from my local computer to the managed DB. I’d really appreciate some input on how to use it within a node.js application and one of the available mysql drivers.

So far I couldn’t find any solutions online, which unfortunately prevents me from actually using DO :/

Reply Report
patrickmalcolm June 11, 2020 
ssl: {
                ca: fs.readFileSync(__dirname + '/ca-certificate.crt'),
            }

Change cert attribute to ca
You can even add rejectUnauthorized: true

Reply Report
Submit an Answer

Related

Looking for something else?

Ask a new question Search for more help