Github Application: Peer certificate cannot be authenticated with given CA certificates

Hello,

I am trying to deploy an Github Application that receives webhook events from Github. I have created a web application that serves certificates provisioned by Let’s Encrypt. I have found this link that details that some Certificate Authorities were removed from Debian which might explain why Github’s Webhook Infrastructure doesn’t trust the CA.

Does anyone know if Github will trust endpoints that present Certificates obtained from Let’s Encrypt?

Regards,

Jeff

Hi @jgensler8,

This post was moved to a different board that fits your topic of discussion a bit better. This means you’ll get better engagement on your post, and it keeps our Community organized so users can more easily find information.

As you’ll notice, your Topic is now in the How to use Git and GitHub board. No action is needed on your part; you can continue the conversation as normal here.

Let me know if you have any other questions or if I can help with anything else.

Cheers!

1 Like

I don’t see why the GitHub infrastructure wouldn’t trust certificates issued by Let’s Encrypt unless the specific certificates were invalidated for some reason. Are you getting an error message of some sort?

Additionally, webhooks aren’t required to be sent via HTTPS but it is  strongly encouraged that they are, especially if the webhook events have to do with private repositories.

1 Like

I may not be returning the complete certificate chain. I have yet to find time to confirm this was the issue but it could likely be the case.

https://github.com/jgensler8/kong-ingress/commit/21b8b829551ff7e5f8c2d2268a76ba4ffb28c848#diff-3c862eb54a8e0e161b534e0c67e5379eR317