Custom CA certificates and SSL verification settings for corporate proxies?

[saiteja-madha]

• I have checked that the SDK documentation doesn't solve my issue.
• I have checked that the API documentation doesn't solve my issue.
• I have searched the Box Developer Forums and my issue isn't already reported (or if it has been reported, I have attached a link to it, for reference).
• I have searched Issues in this repo and my issue isn't already reported.

Description of the Issue

When using Box SDK Gen with a corporate proxy that uses self-signed certificates, I’m encountering SSL verification errors. The SDK doesn’t provide a way to configure custom certificates or disable SSL verification, which is needed for environments with corporate proxies that perform SSL inspection.

Steps to Reproduce

1. Set up corporate proxy in environment variables or requests configuration
2. Initialize Box SDK client
3. Attempt to make API calls
4. Receive SSL verification error with message “certificate verify failed: self signed certificate in certificate chain”

Expected Behavior

The SDK should provide options to:

• Configure custom CA certificates for verification via a .pem file
• Disable SSL verification

Error Message, Including Stack Trace

HTTPSConnectionPool(host='api.box.com', port=443): Max retries exceeded with url: /oauth2/token (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:992)')))

Versions Used

Python SDK: 1.8.0
Python: 3.11.x

[congminh1254]

Hi @saiteja-madha

Thanks for your feedback, currently we are not supporting that feature, but we will try to implement it as soon as possible.

In the same time, because we are using requests library to make the API calls, so you can also configure the path to your self signed certificate with environment named REQUESTS_CA_BUNDLE.

Let me know if it works for you.

Bests,
Minh