Support disabled hostname validation in vespa-security-env + vespa-curl-wrapper

author: Bjørn Christian Seime <bjorncs@verizonmedia.com> 2020-02-17 16:55:48 +0100
committer: Bjørn Christian Seime <bjorncs@verizonmedia.com> 2020-02-17 16:55:48 +0100
commit: b89cdf9c50e6294760a01d9d08698ef8bce17ec6 (patch)
tree: cf14f61b1090e21dd9d90c2e3f8d11338d33c689 /security-tools/src/main/sh/vespa-curl-wrapper
parent: 84d21444ee5308d781990f09eb87739e265b197f (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/security-tools/src/main/sh/vespa-curl-wrapper b/security-tools/src/main/sh/vespa-curl-wrapper
index e286e121f64..c2e97febad2 100755
--- a/security-tools/src/main/sh/vespa-curl-wrapper
+++ b/security-tools/src/main/sh/vespa-curl-wrapper
@@ -88,6 +88,11 @@ then
   CURL_PARAMETERS=("${CURL_PARAMETERS[@]/http:/https:}")
 fi
 
+if [ -n "${VESPA_TLS_DISABLE_HOSTNAME_VALIDATION}" ]
+then
+  CURL_PARAMETERS=("--insecure" "${CURL_PARAMETERS[@]}")
+fi
+
 if [ -n "${VESPA_TLS_CA_CERT}" ]
 then
   CURL_PARAMETERS=("--cacert" "${VESPA_TLS_CA_CERT}" "${CURL_PARAMETERS[@]}")
author	Bjørn Christian Seime <bjorncs@verizonmedia.com>	2020-02-17 16:55:48 +0100
committer	Bjørn Christian Seime <bjorncs@verizonmedia.com>	2020-02-17 16:55:48 +0100
commit	b89cdf9c50e6294760a01d9d08698ef8bce17ec6 (patch)
tree	cf14f61b1090e21dd9d90c2e3f8d11338d33c689 /security-tools/src/main/sh/vespa-curl-wrapper
parent	84d21444ee5308d781990f09eb87739e265b197f (diff)