From 7a07035771098d2cb9c5e189bf7f345a8460f539 Mon Sep 17 00:00:00 2001
From: Alex Kaminskii <alex@openreplay.com>
Date: Wed, 3 Aug 2022 19:53:00 +0200
Subject: [PATCH] feat(backend): AWS_SKIP_SSL_VALIDATION env var

---
 backend/Dockerfile     |  1 +
 backend/pkg/env/aws.go | 11 +++++++++++
 2 files changed, 12 insertions(+)

diff --git a/backend/Dockerfile b/backend/Dockerfile
index 28bedcb40..e83ec1802 100644
--- a/backend/Dockerfile
+++ b/backend/Dockerfile
@@ -46,6 +46,7 @@ ENV TZ=UTC \
     AWS_REGION_WEB=eu-central-1 \
     AWS_REGION_IOS=eu-west-1 \
     AWS_REGION_ASSETS=eu-central-1 \
+    AWS_SKIP_SSL_VALIDATION=false \
     CACHE_ASSETS=true \
     ASSETS_SIZE_LIMIT=6291456 \
     ASSETS_HEADERS="{ \"Cookie\": \"ABv=3;\" }" \
diff --git a/backend/pkg/env/aws.go b/backend/pkg/env/aws.go
index cb7445797..8292cb710 100644
--- a/backend/pkg/env/aws.go
+++ b/backend/pkg/env/aws.go
@@ -1,7 +1,9 @@
 package env
 
 import (
+	"crypto/tls"
 	"log"
+	"net/http"
 
 	"github.com/aws/aws-sdk-go/aws"
 	"github.com/aws/aws-sdk-go/aws/credentials"
@@ -20,6 +22,15 @@ func AWSSessionOnRegion(region string) *_session.Session {
 		config.Endpoint = aws.String(AWS_ENDPOINT)
 		config.DisableSSL = aws.Bool(true)
 		config.S3ForcePathStyle = aws.Bool(true)
+
+		AWS_SKIP_SSL_VALIDATION := Bool("AWS_SKIP_SSL_VALIDATION")
+		if !AWS_SKIP_SSL_VALIDATION {
+			tr := &http.Transport{
+				TLSClientConfig: &tls.Config{InsecureSkipVerify: true},
+			}
+			client := &http.Client{Transport: tr}
+			config.HTTPClient = client
+		}
 	}
 	aws_session, err := _session.NewSession(config)
 	if err != nil {