I'm using Joplin on all my devices, syncing to dropbox. I use it for everything! (because its such a great application). However, recently my place of work has implemented some new vpn/proxy system that impedes my ability to use it. I get the following error while synchronising with dropbox:
Last error: FetchError: request to https://content.dropboxapi.com/2/files/download failed, reason: self signed certificate in certificate chain
Could there be a setting to allow self-signed certs in the chain? I understand setting this creates a potential security risk. However, I'd like to be able to control it for this connection.
1 Like
Joplin uses Electron/Node CA bundle instead of the system CA bundle. Installing and trusting your private CA in the system's certificate manager doesn't work for Joplin.
For Windows: You need to add a system environment variable “NODE_EXTRA_CA_CERTS=C:\Users\nickname\ca-certs\Root_CA_Bundle.pem”, I have tested and this way needs relogin.
For openssl-based systems such as most Linux distributions: You need to add a desktop environment variable “NODE_EXTRA_CA_CERTS=/home/nickname/ca-certs/Root_CA_Bundle.pem” or “NODE_OPTIONS=--use-openssl-ca”, like GNOME / KDE maybe in “~/.config/environment.d/joplin.conf”, I have not tested and may need relogin too.
For macOS: You need to add a desktop environment variable by use command “launchctl setenv NODE_EXTRA_CA_CERTS /Users/nickname/ca-certs/Root_CA_Bundle.pem”, but this way only valid in this login session, If you want to persist, you should write it into LaunchAgent, I have not tested too.