Merge pull request #618 from laf/ssl-no-verify

Added option to disable ssl verification checks for http source
author: ytti <saku@ytti.fi> 2016-11-19 20:34:59 +0200
committer: GitHub <noreply@github.com> 2016-11-19 20:34:59 +0200
commit: e0da3feeb2fc506af31df0b41e14a3f9c588ef82 (patch)
tree: 643ce58b4137353eedc6c5ae132aeceed91e20aa
parent: 29c800271e8ca796ffdc238025070e4aa4d62aca (diff)
parent: 44574426d076c15f67ee9738b1c8c86d71910cce (diff)
2 files changed, 12 insertions, 0 deletions
diff --git a/README.md b/README.md
index 9ca6854..ea70c47 100644
--- a/README.md
+++ b/README.md
@@ -506,6 +506,17 @@ source:
       X-Auth-Token: 'somerandomstring'
 ```
 
+You can also pass `secure: false` if you want to disable ssl certificate verification:
+
+```
+source:
+  default: http
+  http:
+    url: https://url/api
+    scheme: https
+    secure: false
+```
+
 ### Output: File
 
 Parent directory needs to be created manually, one file per device, with most recent running config.
diff --git a/lib/oxidized/source/http.rb b/lib/oxidized/source/http.rb
index dc1c0b7..4fd388b 100644
--- a/lib/oxidized/source/http.rb
+++ b/lib/oxidized/source/http.rb
@@ -20,6 +20,7 @@ class HTTP < Source
     uri = URI.parse(@cfg.url)
     http = Net::HTTP.new(uri.host, uri.port)
     http.use_ssl = true if uri.scheme == 'https'
+    http.verify_mode = OpenSSL::SSL::VERIFY_NONE unless @cfg.secure
 
     # map headers
     headers = {}
author	ytti <saku@ytti.fi>	2016-11-19 20:34:59 +0200
committer	GitHub <noreply@github.com>	2016-11-19 20:34:59 +0200
commit	e0da3feeb2fc506af31df0b41e14a3f9c588ef82 (patch)
tree	643ce58b4137353eedc6c5ae132aeceed91e20aa
parent	29c800271e8ca796ffdc238025070e4aa4d62aca (diff)
parent	44574426d076c15f67ee9738b1c8c86d71910cce (diff)