Is there a parameter to ignore tls verification on read of source ?

[chddv]

Question

Hi,
I have 2 mediamtx runing in docker.
The first one produce a WebRTC stream. I can open it in Chrome without problem.
My second mediamtx must read this source. It did not work because my stream is in https, with a invalid self signed certificate.
"tls: failed to verify certificate: x509: certificate signed by unknown authority"

Is there an option to ignore TLS verification in source ?
Thanks.

[aler9]

yes, the option is called sourceFingerprint and is documented in the configuration file:

mediamtx/mediamtx.yml

Lines 428 to 433 in f9162b2

	# If the source is a URL, and the source certificate is self-signed
	# or invalid, you can provide the fingerprint of the certificate in order to
	# validate it anyway. It can be obtained by running:
	# openssl s_client -connect source_ip:source_port </dev/null 2>/dev/null | sed -n '/BEGIN/,/END/p' > server.crt
	# openssl x509 -in server.crt -noout -fingerprint -sha256 | cut -d "=" -f2 | tr -d ':'
	sourceFingerprint:

[chddv]

Hi
Thanks for your answer !
Christophe