starred/fake-gcs-server

Fork 0

mirror of https://github.com/fsouza/fake-gcs-server.git synced 2026-04-25 21:55:56 +03:00

[GH-ISSUE #459] Getting "certificate is valid for example.com, not localhost" #91

New issue

Closed

opened 2026-03-03 12:08:12 +03:00 by kerem · 6 comments

kerem commented

2026-03-03 12:08:12 +03:00

Owner

Originally created by @anasanzari on GitHub (Mar 19, 2021).
Original GitHub issue: https://github.com/fsouza/fake-gcs-server/issues/459

Getting this error "certificate is valid for example.com, not localhost" with go client

compose file

version: "3"
services:
    image: fsouza/fake-gcs-server
    ports:
      - 4443:4443

go code:

client, err := storage.NewClient(context.Background(), opt, option.WithEndpoint("https://localhost:4443/storage/v1/"))
acl := s.Storage.Bucket(BucketName).Object(fileName).ACL()
if err := acl.Set(ctx, storage.AllUsers, storage.RoleReader); err != nil {
	return err
}

Originally created by @anasanzari on GitHub (Mar 19, 2021). Original GitHub issue: https://github.com/fsouza/fake-gcs-server/issues/459 Getting this error "certificate is valid for example.com, not localhost" with go client compose file ``` version: "3" services: image: fsouza/fake-gcs-server ports: - 4443:4443 ``` go code: ``` client, err := storage.NewClient(context.Background(), opt, option.WithEndpoint("https://localhost:4443/storage/v1/")) acl := s.Storage.Bucket(BucketName).Object(fileName).ACL() if err := acl.Set(ctx, storage.AllUsers, storage.RoleReader); err != nil { return err } ```

kerem closed this issue

2026-03-03 12:08:12 +03:00

kerem commented

2026-03-03 12:08:13 +03:00

Author

Owner

@fsouza commented on GitHub (Mar 19, 2021):

That's weird 🤔 What's your go version?

@fsouza commented on GitHub (Mar 19, 2021): That's weird 🤔 What's your go version?

kerem commented

2026-03-03 12:08:13 +03:00

Author

Owner

@anasanzari commented on GitHub (Mar 19, 2021):

@fsouza it's 1.15

@anasanzari commented on GitHub (Mar 19, 2021): @fsouza it's 1.15

kerem commented

2026-03-03 12:08:13 +03:00

Author

Owner

@fsouza commented on GitHub (Mar 19, 2021):

@anasanzari is s.Storage and client the same? Could you provide a full reproducer? (you can use the go example as a starting point and add the necessary changes to make the ACL change)

@fsouza commented on GitHub (Mar 19, 2021): @anasanzari is `s.Storage` and `client` the same? Could you provide a full reproducer? (you can use the [go example](https://github.com/fsouza/fake-gcs-server/blob/main/examples/go/main.go) as a starting point and add the necessary changes to make the ACL change)

kerem commented

2026-03-03 12:08:13 +03:00

Author

Owner

@anasanzari commented on GitHub (Mar 20, 2021):

@fsouza Here's a full test

func TestFakeGcs(t *testing.T) {
	file, err := os.Open("<FilePath>")
	if err != nil {
		t.Fail()
	}
	rawServiceAccount := `<TestServiceAcount>`
	opt := option.WithCredentialsJSON([]byte(rawServiceAccount))
	client, err := storage.NewClient(context.Background(), opt, option.WithEndpoint("https://localhost:4443/storage/v1/"))
	if err != nil {
		log.Fatal(err)
	}
	fileName := "a.jpeg"
	sw := client.Bucket("test").Object(fileName).NewWriter(context.Background())
	_, err = io.Copy(sw, file)
	if err != nil {
		return
	}
	err = sw.Close()
	if err != nil {
		log.Fatal(err)
	}
}

Client fails with error: "Post "https://localhost:4443/upload/storage/v1/b/test/o?alt=json&name=a.jpeg&prettyPrint=false&projection=full&uploadType=multipart": x509: certificate is valid for example.com, not localhost"

Container logs:

2021/03/20 09:25:52 http: TLS handshake error from 172.19.0.1:54724: remote error: tls: bad certificate

@anasanzari commented on GitHub (Mar 20, 2021): @fsouza Here's a full test ``` func TestFakeGcs(t *testing.T) { file, err := os.Open("<FilePath>") if err != nil { t.Fail() } rawServiceAccount := `<TestServiceAcount>` opt := option.WithCredentialsJSON([]byte(rawServiceAccount)) client, err := storage.NewClient(context.Background(), opt, option.WithEndpoint("https://localhost:4443/storage/v1/")) if err != nil { log.Fatal(err) } fileName := "a.jpeg" sw := client.Bucket("test").Object(fileName).NewWriter(context.Background()) _, err = io.Copy(sw, file) if err != nil { return } err = sw.Close() if err != nil { log.Fatal(err) } } ``` Client fails with error: "Post "https://localhost:4443/upload/storage/v1/b/test/o?alt=json&name=a.jpeg&prettyPrint=false&projection=full&uploadType=multipart": x509: certificate is valid for example.com, not localhost" Container logs: ``` 2021/03/20 09:25:52 http: TLS handshake error from 172.19.0.1:54724: remote error: tls: bad certificate ```

kerem commented

2026-03-03 12:08:13 +03:00

Author

Owner

@anasanzari commented on GitHub (Mar 20, 2021):

@fsouza so issue is that i was not setting InsecureSkipVerify
You could update the example to have that.

tr := &http.Transport{
		TLSClientConfig: &tls.Config{InsecureSkipVerify: true},
	}
	storageHttpclient := &http.Client{Transport: tr}
	client, err := storage.NewClient(context.Background(), opt, option.WithHTTPClient(storageHttpclient), option.WithEndpoint("https://localhost:4443/storage/v1/"))

@anasanzari commented on GitHub (Mar 20, 2021): @fsouza so issue is that i was not setting `InsecureSkipVerify` You could update the example to have that. ``` tr := &http.Transport{ TLSClientConfig: &tls.Config{InsecureSkipVerify: true}, } storageHttpclient := &http.Client{Transport: tr} client, err := storage.NewClient(context.Background(), opt, option.WithHTTPClient(storageHttpclient), option.WithEndpoint("https://localhost:4443/storage/v1/")) ```

kerem commented

2026-03-03 12:08:14 +03:00

Author

Owner

@fsouza commented on GitHub (Mar 20, 2021):

Oh I see. The example uses http, not https, but let me add a comment to it.

@fsouza commented on GitHub (Mar 20, 2021): Oh I see. The example uses http, not https, but let me add a comment to it.

kerem referenced this issue

2026-03-03 12:29:31 +03:00

[PR #91] [MERGED] build(deps): bump cloud.google.com/go from 0.44.3 to 0.46.3 in /examples/go #328