Why does Proxmox require SSL/TLS?

[floccus101]

Why does the current version of homarr (Version 1.2.0) require ssl/tls for the ping functionality and the integration? In an earlier version it was possible to ignore certificate errors with proxmox. Why is this no longer possible?

[Meierschlumpf]

Hey
We decided to no longer trust any certificate, because it is a security issue. If you have a self signed certificate, you can add the root certificate on the certificate management page:
https://homarr.dev/docs/management/certificates/

[floccus101]

Hey,
thanks for the fast reply.

"no longer trust any certificate". Do you mean only self-signed certificates or really all certificates?

I have now created a self-signed certificate and the proxmox integration is working. However, I always get a timeout (red circle) when pinging / querying the status of proxmox.
I can see the status of the proxmox VMs and LXCs, but I get this error in the console:

2025-01-27T22:22:25.914Z error: Failed to run integration job integration=rxbg9glvy18gadw604bofm7o inputHash='W3t9XQ==' error=Error: FaILED to call GET https://192.168.178.5:8006/api2/json/cluster/resources cause by:self-signed certificate

  at ProxmoxEngine.doRequest (/app/apps/tasks/tasks.cjs:450124:22)

  at async ProxmoxIntegration.getClusterInfoAsync (/app/apps/tasks/tasks.cjs:450322:23)

  at async Object.requestAsync (/app/apps/tasks/tasks.cjs:451673:12)

  at async Object.requestAsync (/app/apps/tasks/tasks.cjs:450499:16)

  at async requestNewDataAsync (/app/apps/tasks/tasks.cjs:450453:26)

  at async Object.getCachedOrUpdatedDataAsync (/app/apps/tasks/tasks.cjs:450464:20)

  at async /app/apps/tasks/tasks.cjs:451615:9

  at async catchingCallbackAsync (/app/apps/tasks/tasks.cjs:437700:9)

The above error also had these properties on it:

{

  cause: TypeError: fetch failed

      at fetch6 (/app/apps/tasks/tasks.cjs:20067:17)

      at process.processTicksAndRejections (node:internal/process/task_queues:105:5)

      at async ProxmoxEngine.doRequest (/app/apps/tasks/tasks.cjs:450091:13)

      at async ProxmoxIntegration.getClusterInfoAsync (/app/apps/tasks/tasks.cjs:450322:23)

      at async Object.requestAsync (/app/apps/tasks/tasks.cjs:451673:12)

      at async Object.requestAsync (/app/apps/tasks/tasks.cjs:450499:16)

      at async requestNewDataAsync (/app/apps/tasks/tasks.cjs:450453:26)

      at async Object.getCachedOrUpdatedDataAsync (/app/apps/tasks/tasks.cjs:450464:20)

      at async /app/apps/tasks/tasks.cjs:451615:9

      at async catchingCallbackAsync (/app/apps/tasks/tasks.cjs:437700:9) {

    [cause]: Error: self-signed certificate

        at TLSSocket.onConnectSecure (node:_tls_wrap:1679:34)

        at TLSSocket.emit (node:events:524:28)

        at TLSSocket._finishInit (node:_tls_wrap:1078:8)

        at ssl.onhandshakedone (node:_tls_wrap:864:12) {

      code: 'DEPTH_ZERO_SELF_SIGNED_CERT'

    }
  }
}

I have uploaded the self-signed certificate to homarr. Otherwise the integration would not work. But why does this error message appear and why does the ping to Proxmox not work?

This is the error for the ping:
2025-01-27T22:23:11.315Z error: packages/ping/src/index.ts: fetch failed

[Taomyn]

Similar for me, the root certificate of my internal CA is already added and everything else is working, just the app ping - I'd love to copy/paste from the log but the auto-refresh is preventing me easily selecting any of the text.

[manuel-rw]

We forgot to use the trusted certificates in the app ping. This is a bug and we will fix it as soon as possible.