Bundle Cert with Lambda

corydorning · September 15, 2020, 1:05pm

I have a Certificate Authority file (.pem) that i’m bundling with my lambda and I have added the NODE_EXTRA_CA_CERTS to my environment variables with the path to the cert file. Unfortunately, when i make my requests back to my on-prem server, node is giving the following error:
UNABLE_TO_GET_ISSUER_CERT_LOCALLY

My serverless.yml has an environment variable configured and it shows up with my lambda, for some reason, Node just isn’t picking it up. Doing this locally works:

    provider:
      name: aws
      region: us-east-2
      runtime: nodejs12.x
      endpointType: regional
      stage: dev
      environment:
        NODE_EXTRA_CA_CERTS: /var/task/.certs/My-Root-CA.pem

stephenbawks · March 14, 2021, 12:26pm

Why not make this a layer? Package your certs up and push it out as a layer. Add the layer in your function and then add the environment variable and point it to

layers:
    - arn:path:of:layer
environment:
      NODE_EXTRA_CA_CERTS: /opt/folderforcerts

Topic		Replies	Views
Load PEM File on deployment Serverless Framework	2	2301	August 21, 2017
Serverless Deployment Behind Corporate Proxy Serverless Framework aws	4	3308	May 10, 2023
JWT with Certificate + Severless Serverless Framework	0	706	May 15, 2018
Required .js file is defined on local but null on Lambda Serverless Framework aws , lambda	1	551	August 28, 2020
ServerlessError: ServerlessError: unable to get local issuer certificate Serverless Framework aws	7	8725	May 13, 2021

Bundle Cert with Lambda

Related topics