From 59e82bba2befb6ef5049ea9ae4e876327f3da158 Mon Sep 17 00:00:00 2001
From: Neil Lathwood <neil@lathwood.co.uk>
Date: Sat, 19 Nov 2016 14:16:20 +0000
Subject: Added option to disable ssl verification checks for http source

---
 README.md                   | 11 +++++++++++
 lib/oxidized/source/http.rb |  1 +
 2 files changed, 12 insertions(+)

diff --git a/README.md b/README.md
index 9ca6854..a1aee03 100644
--- a/README.md
+++ b/README.md
@@ -506,6 +506,17 @@ source:
       X-Auth-Token: 'somerandomstring'
 ```
 
+You can also pass `no_check_certificate = true` if you want to disable ssl certificate verification:
+
+```
+source:
+  default: http
+  http:
+    url: https://url/api
+    scheme: https
+    no_check_certificate: true
+```
+
 ### Output: File
 
 Parent directory needs to be created manually, one file per device, with most recent running config.
diff --git a/lib/oxidized/source/http.rb b/lib/oxidized/source/http.rb
index dc1c0b7..6f16aee 100644
--- a/lib/oxidized/source/http.rb
+++ b/lib/oxidized/source/http.rb
@@ -20,6 +20,7 @@ class HTTP < Source
     uri = URI.parse(@cfg.url)
     http = Net::HTTP.new(uri.host, uri.port)
     http.use_ssl = true if uri.scheme == 'https'
+    http.verify_mode = OpenSSL::SSL::VERIFY_NONE if uri.no_check_certificate == true
 
     # map headers
     headers = {}
-- 
cgit v1.2.1