How to use a CA (like curl's --cacert) with HTTPie

Question

In curl I can connect with a private key, client cert, and a ca cert like this

curl --cert cert.pem --key key.pem --cacert ca.pem https://example.org

I can see the --cert and --cert-key options in HTTPie, but how could I use the --cacert option in HTTPie?

I tried combining cert.pem and ca.pem in a new file and using that as my --cert file, but that didn't work.

score 14 · Answer 1 · answered Jun 08 '17 at 23:35

14

I got it. In HTTPie you just pass the ca.pem using --verify like this

http --cert cert.pem --cert-key key.pem --verify ca.pem http://example.org

answered Jun 08 '17 at 23:35

Ahmadster

181
1
6

score 2 · Answer 2 · answered Apr 30 '21 at 00:14

Only ca.pem is required. This is correct request:

http --verify /etc/nginx/ssl/myCA.pem https://local.dev

Both ssl_certificate - cert.pem (crt) and ssl_certificate_key - key.pem (key) should be indicated in server settings, sho you do not need attach them in query.

score 0 · Answer 3 · answered Aug 23 '22 at 18:12

One additional option is to leverage HTTPie Configurable options to automatically pass the --verify flag for any http call:

~/.config/httpie/config.json

{
    "default_options": [
        "--verify=/path/to/ssl/custom_ca_bundle.pem"
    ]
}

This way you can continue calling HTTPie without manually passing --verify each time!

http https://local.dev

Response:

HTTP/1.1 200 OK
Content-Type: application/json
Server: nginx

...

How to use a CA (like curl's --cacert) with HTTPie

3 Answers3