How can I convert this Curl call to Javascript/React?

Question

I have a curl call that looks like this:

curl \
-v \
-X POST \
-k \
-H 'Content-Type: application/json' \
-d '{
    "mydata": "XXXXX"
}' \
"https://localhost:11000/myEndpoint"

It works. I get a 200 response. But when I remove the -k flag, it fails with this error:

curl: (60) SSL certificate problem: self signed certificate

So I know that the -k flag is required.

Now I'm trying to convert this curl to Javascript/React. But when I do this in React, it fails:

const response = await fetch(
  'https://localhost:11000/myEndpoint',
  {
    method: 'POST',
    headers: {
      'Content-Type': 'application/json',
    },
    body: JSON.stringify({ mydata: 'XXXXX' })
  },
)

Here is the error in the browser console:

POST https://localhost:11000/myEndpoint net::ERR_CERT_AUTHORITY_INVALID

I believe this error is because the Javascript/React is not doing the equivalent of a -k. How can I make it mimic the -k behavior of Curl?

https://stackoverflow.com/questions/50958516/javascript-self-signed-certificate-error-during-api-call — john Smith, Nov 06 '20 at 18:01
Another option would be to ajaxcall call a serverside script hosted on your domain that does the curl request and returns the response — john Smith, Nov 07 '20 at 13:47

score 2 · Answer 1 · answered Nov 06 '20 at 18:00

There's no way to have a fetch() (or XHR, or any other) call directly do what -k (also known as --insecure) does.

You will need to tell your browser to trust that self-signed certificate.

In general, you can do that for a single session by navigating to https://localhost:11000/ and accepting the "Yes, I know what I'm doing, I know this is insecure" prompt that'll likely show up.

For more permanent solutions, you can search the web for e.g. "trust self-signed certificate YOUR BROWSER HERE"...

How can I convert this Curl call to Javascript/React?

1 Answers1