Update SSL-related env for database connections (#5242)

2025-09-26 14:35:35 +05:30 · 2025-09-26 14:35:35 +05:30 · e48f28d13d
parent cf6539cd3f
commit e48f28d13d
4 changed files with 7 additions and 4 deletions
--- a/docker/.env.example
+++ b/docker/.env.example
@ -14,6 +14,7 @@ DATABASE_PATH=/root/.flowise
 # DATABASE_USER=root
 # DATABASE_PASSWORD=mypassword
 # DATABASE_SSL=true
+# DATABASE_REJECT_UNAUTHORIZED=true
 # DATABASE_SSL_KEY_BASE64=<Self signed certificate in BASE64>


@ -172,4 +173,4 @@ JWT_REFRESH_TOKEN_EXPIRY_IN_MINUTES=43200

 # HTTP_DENY_LIST=
 # CUSTOM_MCP_SECURITY_CHECK=true
-# CUSTOM_MCP_PROTOCOL=sse #(stdio | sse)
+# CUSTOM_MCP_PROTOCOL=sse #(stdio | sse)
--- a/docker/worker/.env.example
+++ b/docker/worker/.env.example
@ -14,6 +14,7 @@ DATABASE_PATH=/root/.flowise
 # DATABASE_USER=root
 # DATABASE_PASSWORD=mypassword
 # DATABASE_SSL=true
+# DATABASE_REJECT_UNAUTHORIZED=true
 # DATABASE_SSL_KEY_BASE64=<Self signed certificate in BASE64>


@ -172,4 +173,4 @@ JWT_REFRESH_TOKEN_EXPIRY_IN_MINUTES=43200

 # HTTP_DENY_LIST=
 # CUSTOM_MCP_SECURITY_CHECK=true
-# CUSTOM_MCP_PROTOCOL=sse #(stdio | sse)
+# CUSTOM_MCP_PROTOCOL=sse #(stdio | sse)
--- a/packages/server/.env.example
+++ b/packages/server/.env.example
@ -14,6 +14,7 @@ PORT=3000
 # DATABASE_USER=root
 # DATABASE_PASSWORD=mypassword
 # DATABASE_SSL=true
+# DATABASE_REJECT_UNAUTHORIZED=true
 # DATABASE_SSL_KEY_BASE64=<Self signed certificate in BASE64>


@ -180,4 +181,4 @@ JWT_REFRESH_TOKEN_EXPIRY_IN_MINUTES=43200
 ############################################################################################################

 # PUPPETEER_EXECUTABLE_FILE_PATH='C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe'
-# PLAYWRIGHT_EXECUTABLE_FILE_PATH='C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe'
+# PLAYWRIGHT_EXECUTABLE_FILE_PATH='C:\\Program Files\\Google\\Chrome\\Application\\chrome.exe'
--- a/packages/server/src/DataSource.ts
+++ b/packages/server/src/DataSource.ts
@ -111,7 +111,7 @@ export function getDataSource(): DataSource {
 export const getDatabaseSSLFromEnv = () => {
    if (process.env.DATABASE_SSL_KEY_BASE64) {
        return {
-            rejectUnauthorized: false,
+            rejectUnauthorized: process.env.DATABASE_REJECT_UNAUTHORIZED === 'true',
            ca: Buffer.from(process.env.DATABASE_SSL_KEY_BASE64, 'base64')
        }
    } else if (process.env.DATABASE_SSL === 'true') {