[feature] Allow users to skip http client tls verification for testing purposes (with appropriately loud warnings) (#2052)

author: tobi <31960611+tsmethurst@users.noreply.github.com> 2023-08-01 19:50:17 +0200
committer: GitHub <noreply@github.com> 2023-08-01 18:50:17 +0100
commit: 2be83fdca5c440d45b8cd92bda9315757463d6c7 (patch)
tree: 041eb0ef390f2995cd243206c5f0cc8fb3d66488 /docs/configuration
parent: [feature] Set timezone in Docker using TZ env variable (#2050) (diff)
download: gotosocial-2be83fdca5c440d45b8cd92bda9315757463d6c7.tar.xz
1 files changed, 12 insertions, 0 deletions
diff --git a/docs/configuration/httpclient.md b/docs/configuration/httpclient.md
index 1fcf2d061..b76f434dc 100644
--- a/docs/configuration/httpclient.md
+++ b/docs/configuration/httpclient.md
@@ -53,4 +53,16 @@ http-client:
   # Both allow-ips and block-ips default to an empty array.
   allow-ips: []
   block-ips: []
+
+  # Bool. Disable verification of TLS certificates of remote servers.
+  # With this set to 'true', GoToSocial will not error when a remote
+  # server presents an invalid or self-signed certificate.
+  #
+  # THIS SETTING SHOULD BE USED FOR TESTING ONLY! IF YOU TURN THIS
+  # ON WHILE RUNNING IN PRODUCTION YOU ARE LEAVING YOUR SERVER WIDE
+  # OPEN TO MAN IN THE MIDDLE ATTACKS! DO NOT CHANGE THIS SETTING 
+  # UNLESS YOU KNOW EXACTLY WHAT YOU'RE DOING AND WHY YOU'RE DOING IT.
+  #
+  # Default: false
+  tls-insecure-skip-verify: false
 ```
author	tobi <31960611+tsmethurst@users.noreply.github.com>	2023-08-01 19:50:17 +0200
committer	GitHub <noreply@github.com>	2023-08-01 18:50:17 +0100
commit	2be83fdca5c440d45b8cd92bda9315757463d6c7 (patch)
tree	041eb0ef390f2995cd243206c5f0cc8fb3d66488 /docs/configuration
parent	[feature] Set timezone in Docker using TZ env variable (#2050) (diff)
download	gotosocial-2be83fdca5c440d45b8cd92bda9315757463d6c7.tar.xz