Supporting Custom CA Certificates on Railway CLI

[SorataYuu]

My company requires us to use Cloudflare WARP for our work, which requires the use of a custom CA certificate to connect to it.

This leads the Railway CLI to give this error when the VPN is on:

Failed to fetch: error sending request for url (https://backboard.railway.com/graphql/v2)

Caused by:
    0: error sending request for url (https://backboard.railway.com/graphql/v2)
    1: client error (Connect)
    2: invalid peer certificate: UnknownIssuer

Would there be any way to support custom certificates on Railway CLI? Such as by trusting the system's CA store?

[zicklag]

Would it work for you to add your Cloudflare certificate to your system certificate store?

Then we could have the railway CLI use the system store.

That's the sitation I'm in. I've got a one-line PR for enabling the system certificate store that fixes this issue for me.

It should also be relatively easy I think to add a CLI flag / env var for setting a custom certificate if necessary.

Would y'all be interested in a PR that at least add's support for the system certificate store? It's just an extra feature flag for the reqwests library.

---

PS: Thank you so much for open sourcing your CLI and using Rust and reqwests. 😀 That means I can make all my proxy fixes work. I've done a lot of proxy PRs for tools, and Rust is one of the easier ecosystems for them.