commit 5c7d08da2b2b7e7753c83c53586c38cb8e48c4e2
author Klesh Wong <zhenmian.huang@merico.dev> Thu Dec 01 17:04:01 2022 +0800
committer Louis.z <louis.s4372121@gmail.com> Thu Dec 01 21:55:54 2022 +0800
tree 031ca12da50116c94aec67d3e3268670637f1567
parent 978acd6a17b5e4cae4c729d626cf59debf159885

docs: how to collect data from self-signed gitlab

docs/UserManuals/ConfigUI/GitLab.md

diff --git a/docs/UserManuals/ConfigUI/GitLab.md b/docs/UserManuals/ConfigUI/GitLab.md
index 482e470..70ba46f 100644
--- a/docs/UserManuals/ConfigUI/GitLab.md
+++ b/docs/UserManuals/ConfigUI/GitLab.md
@@ -49,3 +49,28 @@
 
 ### Step 4 - Setting Sync Frequency
 You can choose how often you would like to sync your data in this step by selecting a sync frequency option or enter a cron code to specify your prefered schedule.
+
+
+## FAQ
+
+### How to collect data from Gitlab server with Self-Signed Certificate
+There are two symptoms would exhibit when trying to collect data from a private Gitlab server with a Self-Signed certificate:
+
+1. "Test Connection" report error, this can be solved by setting the environment variable `IN_SECURE_SKIP_VERIFY=true` for the `devlake` container
+2. "GitExtractor" fails to clone the repository due to certificate verification, sadly, both `gogit` and `git2go` that we are using don't seem to support insecure HTTPS at all.
+
+A better approach would be adding your root CA to the `devlake` container:
+
+1. Mount your `rootCA.crt` into the `devlake` container
+2. Add a `command` node to install the mounted certificate
+```
+  devlake:
+    image: apache/devlake:v...
+    ...
+    volumes:
+      ...
+      - /path/to/your/rootCA.crt:/usr/local/share/ca-certificates/rootCA.crt
+    command: [ "sh", "-c", "update-ca-certificates; lake" ]
+    ...
+```
+