Skip to content

fix(network): remove unconditional rejectUnauthorized=false#39798

Open
yury-s wants to merge 1 commit intomicrosoft:mainfrom
yury-s:fix-https-proxy-ignore-errors
Open

fix(network): remove unconditional rejectUnauthorized=false#39798
yury-s wants to merge 1 commit intomicrosoft:mainfrom
yury-s:fix-https-proxy-ignore-errors

Conversation

@yury-s
Copy link
Member

@yury-s yury-s commented Mar 21, 2026
edited
Loading

The behavior can be set via NODE_TLS_REJECT_UNAUTHORIZED node env variable.

@yury-s
fix(network): respect ignoreHTTPSErrors when using HTTPS proxy
c29a71d 
Previously, httpRequest() unconditionally set rejectUnauthorized=false
when routing through an HTTPS proxy, ignoring the caller's setting.
Now params.rejectUnauthorized is respected for the proxied connection.
dgozman
dgozman approved these changes Mar 21, 2026
View reviewed changes
Copy link
Contributor

@dgozman dgozman left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please rename the PR to mention downloads rather than ignoreHTTPSErrors.

Also recommend NODE_TLS_REJECT_UNAUTHORIZED as a workaround?

@yury-s yury-s changed the title fix(network): respect ignoreHTTPSErrors when using HTTPS proxy fix(network): remove unconditional rejectUnauthorized=false for downloads via proxy Mar 21, 2026
@yury-s yury-s changed the title fix(network): remove unconditional rejectUnauthorized=false for downloads via proxy fix(network): remove unconditional rejectUnauthorized=false Mar 21, 2026
@github-actions
Copy link
Contributor

github-actions bot commented Mar 21, 2026

Test results for "MCP"

4 failed
❌ [chrome] › mcp/dashboard.spec.ts:23 › should show browser session chip @mcp-windows-latest
❌ [chrome] › mcp/dashboard.spec.ts:31 › should show devtools sidebar @mcp-windows-latest
❌ [firefox] › mcp/http.spec.ts:103 › http transport browser lifecycle (isolated) @mcp-windows-latest
❌ [firefox] › mcp/http.spec.ts:142 › http transport browser sigint @mcp-windows-latest

5454 passed, 340 skipped

Merge workflow run.

@github-actions
Copy link
Contributor

github-actions bot commented Mar 21, 2026

Test results for "tests 1"

4 flaky ⚠️ [chromium-library] › library/trace-viewer.spec.ts:1223 › should display language-specific locators `@chromium-ubuntu-22.04-arm-node20`
⚠️ [chromium-library] › library/trace-viewer.spec.ts:1223 › should display language-specific locators `@chromium-ubuntu-22.04-node20`
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1080 › cli codegen › should not throw csp directive violation errors `@firefox-ubuntu-22.04-node20`
⚠️ [firefox-page] › page/page-wait-for-function.spec.ts:104 › should work with strict CSP policy `@firefox-ubuntu-22.04-node20`

38817 passed, 845 skipped

Merge workflow run.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dgozman dgozman dgozman approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@yury-s @dgozman