I’m using ESP-IDF to make an HTTP GET request to the OSM API, but I’m encountering a certificate verification error.
- Is it possible to make an HTTP request instead of HTTPS?
- What is the correct way to obtain the server certificate for OSM?
You can certainly make an HTTP request but it will just redirect to HTTPS so it won’t help you.
There shouldn’t be any need to obtain a server certificate as it uses a perfectly normal public certificate issued by Letsencrypt which should be trusted by any vaguely modern system. As that certificate renews every few months trying to pin trust on it would be a bad idea.
1 Like
If the certificate recently stopped working it is likely due to us recent switch to modern ECDSA type certificates. As noted our certificates are standard Let’s Encrypt certificates as issued by the official certbot tool.
It appears it may be possible to manually update the root certificate bundle in esp-idf.