SSL verification for VSCode Extensions



When installing VScode extensions, an SSL error may occur similar to this:

Failed to install extension. ms-python.python
Error: self signed certificate in certificate chain
at TLSSocket.onConnectSecure (node:tlswrap:1532:34)
at TLSSocket.emit (node:events:527:28)
at TLSSocket.finishInit (node:tls_wr","seqId":2}]


This error could occur in a corporate environment where outbound SSL inspection/decryption is enabled by IT. 



Assuming the SSL certificate injected by that inspection process (proxy) is already added to the trusted system CA store. You can instruct the use of that CA store through an environment variable.

To do so, pass in an environment variable NODE_EXTRA_CA_CERTS with<path-to-root-ca-store>:


JobType: Session
Workbench: vs code
Environment: NODE_EXTRA_CA_CERTS=<path-to-root-ca-store>

`<path-to-root-ca-store>` is different based on your Linux distribution.


RHEL locates the system CA bundle at this path: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem

Ubuntu locates the system CA bundle at this path: /etc/ssl/certs/ca-certificates.crt


Then, restart the rstudio-launcher and rstudio-server service.