(feat): Chalice - Allow option to set ssl verification to false for the Chalice API

2023-03-22 16:29:53 +00:00 · 2023-03-22 16:29:53 +00:00 · 516b90c5e1
commit 516b90c5e1
parent 561f333870
3 changed files with 6 additions and 2 deletions
--- a/api/chalicelib/utils/s3.py
+++ b/api/chalicelib/utils/s3.py
@ -16,7 +16,8 @@ else:
                          aws_access_key_id=config("S3_KEY"),
                          aws_secret_access_key=config("S3_SECRET"),
                          config=Config(signature_version='s3v4'),
-                          region_name=config("sessions_region"))
+                          region_name=config("sessions_region"),
+                          verify=(False if config("S3_DISABLE_SSL_VERIFY") else True))


 def __get_s3_resource():
@ -26,7 +27,8 @@ def __get_s3_resource():
                          aws_access_key_id=config("S3_KEY"),
                          aws_secret_access_key=config("S3_SECRET"),
                          config=Config(signature_version='s3v4'),
-                          region_name=config("sessions_region"))
+                          region_name=config("sessions_region"),
+                          verify=(False if config("S3_DISABLE_SSL_VERIFY") else True))


 def exists(bucket, key):
--- a/api/env.default
+++ b/api/env.default
@ -10,6 +10,7 @@ EMAIL_USE_TLS=true
 S3_HOST=
 S3_KEY=
 S3_SECRET=
+S3_DISABLE_SSL_VERIFY=
 SITE_URL=
 announcement_url=
 captcha_key=
--- a/ee/api/env.default
+++ b/ee/api/env.default
@ -11,6 +11,7 @@ LICENSE_KEY=
 S3_HOST=
 S3_KEY=
 S3_SECRET=
+S3_DISABLE_SSL_VERIFY=
 SAML2_MD_URL=
 SITE_URL=
 announcement_url=