Add custom root CA - logs indicate connection error

What issue or error are you experiencing?

I’m unable to pick different versions of php, apache, mysql, mariadb, nginx. The logs say that it can’t verify the certificate on github.io and localwp.com. We have a root CA that we need to add to the tool to connect to the lightning services. Alternatively, we need a way to manually install the lightning services. We don’t want to run through non-https and we don’t want to disable zScaler.

We have zScaler doing the ssl decryption/inspection. The root CA is installed in windows. The browser, curl, and all our other tools respect the root CA installed in the windows certificate manager but it looks like localwp (seems to be nodejs specifically) doesn’t.


What steps can be taken to replicate the issue? Feel free to include screenshots, videos, etc

Run a PKI server and install the custom root certificate authority or run zScaler. Open localwp and when selecting the components for a new site it will not be able to download the updates, or list them. The logs will show the connection errors.


System Details

  • Local Version:
    Version 8.3.2+6660

  • Operating System (OS) and OS version:
    windows 10


Local Logs

Attach your Local Logs here (Help Doc - Retrieving Local’s Log)
{“class”:“LightningServicesService”,“level”:“error”,“message”:“network timeout at: https://getflywheel.github.io/local-lightning-services/site-services-v2.json",“stack”:"FetchError: network timeout at: https://getflywheel.github.io/local-lightning-services/site-services-v2.json\n at Timeout. (%%appPath%%\node_modules\node-fetch\lib\index.js:1484:13)\n at listOnTimeout (node:internal/timers:569:17)\n at process.processTimers (node:internal/timers:512:7)”,“thread”:“main”,“timestamp”:“2024-04-09T18:01:44.063Z”,“type”:“request-timeout”}
{“level”:“warn”,“linuxEdition”:null,“localVersion”:“8.3.2+6660”,“message”:“Electron Event ready”,“osArch”:“x64”,“osPlatform”:“win32”,“osRelease”:“10.0.19045”,“timestamp”:“2024-04-10T17:40:18.082Z”,“windowsEdition”:“Microsoft Windows 10 Enterprise”}
{“eventId”:“afa93af3ba1c4d2f9f79649135346b06”,“level”:“warn”,“message”:“Unhandled Rejection.”,“p”:{},“reason”:{“code”:“UNABLE_TO_GET_ISSUER_CERT_LOCALLY”,“errno”:“UNABLE_TO_GET_ISSUER_CERT_LOCALLY”,“message”:“request to https://cdn.localwp.com/stable/updates.json failed, reason: unable to get local issuer certificate”,“type”:“system”},“thread”:“main”,“timestamp”:“2024-04-10T17:40:18.784Z”}
{“class”:“LightningServicesService”,“code”:“UNABLE_TO_GET_ISSUER_CERT_LOCALLY”,“errno”:“UNABLE_TO_GET_ISSUER_CERT_LOCALLY”,“level”:“error”,“message”:“request to https://getflywheel.github.io/local-lightning-services/site-services-v2.json failed, reason: unable to get local issuer certificate”,“stack”:“FetchError: request to https://getflywheel.github.io/local-lightning-services/site-services-v2.json failed, reason: unable to get local issuer certificate\n at ClientRequest. (%%appPath%%\node_modules\node-fetch\lib\index.js:1491:11)\n at ClientRequest.emit (node:events:513:28)\n at TLSSocket.socketErrorListener (node:_http_client:502:9)\n at TLSSocket.emit (node:events:513:28)\n at emitErrorNT (node:internal/streams/destroy:151:8)\n at emitErrorCloseNT (node:internal/streams/destroy:116:3)\n at process.processTicksAndRejections (node:internal/process/task_queues:82:21)”,“thread”:“main”,“timestamp”:“2024-04-10T17:40:38.112Z”,“type”:“system”}
{“level”:“warn”,“linuxEdition”:null,“localVersion”:“8.3.2+6660”,“message”:“Electron Event ready”,“osArch”:“x64”,“osPlatform”:“win32”,“osRelease”:“10.0.19045”,“timestamp”:“2024-04-10T18:36:55.657Z”,“windowsEdition”:“Microsoft Windows 10 Enterprise”}
{“eventId”:“cad568bfa65e4b3fa4ac03cf220a27b5”,“level”:“warn”,“message”:“Unhandled Rejection.”,“p”:{},“reason”:{“code”:“UNABLE_TO_GET_ISSUER_CERT_LOCALLY”,“errno”:“UNABLE_TO_GET_ISSUER_CERT_LOCALLY”,“message”:“request to https://cdn.localwp.com/stable/updates.json failed, reason: unable to get local issuer certificate”,“type”:“system”},“thread”:“main”,“timestamp”:“2024-04-10T18:36:56.184Z”}


Security Reminder
Local does a pretty good job of scrubbing private info from the logs and the errors it produces, however there’s always the possibility that something private can come through. Because these are public forums, always review the screenshots you are sharing to make sure there isn’t private info like passwords being displayed.