[MDL-76580] Developer convenience: allow curl to ignore ssl issues - Moodle Tracker

XML

Word

Printable

When working on a local dev box which is ssl but doesn't have a proper cert it would be useful to have a simple option to allow curl to work anyway.

I was originally thinking a single CFG toggle which changes these:

But then I thought it might be more useful and flexible to have something like:

$CFG->curldefaults = [

    'CURLOPT_SSL_VERIFYPEER' => 0,

    'CURLOPT_SSL_VERIFYHOST' => 2,

    'CURLOPT_CONNECTTIMEOUT' => 10,

];

In particular some of the other settings like the various timeouts may be useful to override in production too.

has a non-specific relationship to

MDL-76473 Add $CFG->ignoresecurity for local development using HTTPS

has been marked as being related by

MDL-77267 Add settings to allow ignore security in guzzle

Component watchers:: Matteo Scaramuccia, David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo, David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo