From 1502861673d2390b66c64864f17079941d753958 Mon Sep 17 00:00:00 2001
From: Lixian Zhou <charlie32690@gmail.com>
Date: Mon, 16 Mar 2026 16:05:43 -0400
Subject: [PATCH] fix

---
 app/controllers/auth.controller.js | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/app/controllers/auth.controller.js b/app/controllers/auth.controller.js
index 058a35e..b7f58f7 100644
--- a/app/controllers/auth.controller.js
+++ b/app/controllers/auth.controller.js
@@ -3,12 +3,14 @@ const Employee = db.employee;
 const ExtUserPermission = db.ext_usr_perm;
 const config = require("../config/auth.config");
 const axios = require("axios");
+const https = require("https");
 
 var jwt = require("jsonwebtoken");
 var bcrypt = require("bcryptjs");
 const { splitSite } = require("../middlewares");
 const HR_AUTH_LOGIN_ENDPOINT = "https://ws-hr.mayosolution.com/api/auth/login";
 const SYSTEM_ACCESS_PERMISSION = "System Access";
+const HR_INSECURE_HTTPS_AGENT = new https.Agent({ rejectUnauthorized: false });
 
 const ALL_PERMISSIONS = [
   'Dashboard',
@@ -200,7 +202,10 @@ exports.login = async (req, res) => {
           password,
           site
         },
-        { timeout: 15000 }
+        {
+          timeout: 15000,
+          httpsAgent: HR_INSECURE_HTTPS_AGENT
+        }
       );
       const externalUser = externalAuthResponse?.data;
       const isExternalUserValid =