DNI List for Cloudflare WARP to allow Local login to WPengine and localWP

What issue or error are you experiencing?

I’m trying to get local working with WPengine access behind a cloudflare warp team gateway. On the cloudflare side this is a Gateway with WARP & Exclude IPs & domains setting. With Warp active, I cannot log into WPEngine or local hub, without they work fine.

Ideally this will be solved with the right rules for a Do Not Inspect list on the certificates. Split tunneling on these would be far less ideal.


What steps can be taken to replicate the issue? Feel free to include screenshots, videos, etc

Turn on WARP with settings described above, Instantly lose all Local app logins.
Logging in works fine in the browser, but never returns login as active to Local.

attempted with DNI rule set for domains:


System Details

  • Local Version:
    Version 9.0.5+6706
  • Operating System (OS) and OS version:
    MacOS v15, MacOS v14.6.1, Windows 11, same issue. Logs below from macOS 14.6.1 as I have the most control over that env.

Local Logs

{“cause”:{“cause”:{“code”:“UNABLE_TO_GET_ISSUER_CERT_LOCALLY”}},“class”:“CAPIService”,“level”:“error”,“message”:“The request failed and the interceptors did not return an alternative response”,“name”:“FetchError”,“stack”:“FetchError: The request failed and the interceptors did not return an alternative response\n at UserApi. (%%appPath%%/main/capi/client/runtime.js:1:2144)\n at Generator.throw ()\n at a (%%appPath%%/main/capi/client/runtime.js:1:183)\n at process.processTicksAndRejections (node:internal/process/task_queues:95:5)”,“thread”:“main”,“timestamp”:“2024-09-25T18:20:35.091Z”}
{“cause”:{“cause”:{“code”:“UNABLE_TO_GET_ISSUER_CERT_LOCALLY”}},“class”:“CAPIService”,“level”:“error”,“message”:“The request failed and the interceptors did not return an alternative response”,“name”:“FetchError”,“stack”:“FetchError: The request failed and the interceptors did not return an alternative response\n at UserApi. (%%appPath%%/main/capi/client/runtime.js:1:2144)\n at Generator.throw ()\n at a (%%appPath%%/main/capi/client/runtime.js:1:183)\n at process.processTicksAndRejections (node:internal/process/task_queues:95:5)”,“thread”:“main”,“timestamp”:“2024-09-25T18:20:35.095Z”}
{“class”:“FlywheelAPI”,“level”:“warn”,“message”:“FetchError: request to https://app.getflywheel.com/api/v2/sites failed, reason: unable to get local issuer certificate\n at ClientRequest. (%%appPath%%/node_modules/node-fetch/lib/index.js:1491:11)\n at ClientRequest.emit (node:events:529:35)\n at ClientRequest.emit (node:domain:489:12)\n at TLSSocket.socketErrorListener (node:_http_client:501:9)\n at TLSSocket.emit (node:events:517:28)\n at TLSSocket.emit (node:domain:489:12)\n at emitErrorNT (node:internal/streams/destroy:151:8)\n at emitErrorCloseNT (node:internal/streams/destroy:116:3)\n at process.processTicksAndRejections (node:internal/process/task_queues:82:21)”,“requestUrl”:“https://app.getflywheel.com/api/v2/sites",“thread”:“main”,“timestamp”:"2024-09-25T18:20:43.487Z”}


Security Reminder
Local does a pretty good job of scrubbing private info from the logs and the errors it produces, however there’s always the possibility that something private can come through. Because these are public forums, always review the screenshots you are sharing to make sure there isn’t private info like passwords being displayed.

Hi @m8hue! Thank you for raising this. It may take us some time to dig into this further but I’ve passed it along for our devs to have a look. If you have any other questions or details feel free to share them here!