From da3e6801a5e8abc6a1b9c2189290193e81a97c57 Mon Sep 17 00:00:00 2001
From: Serghei Mihai <smihai@entrouvert.com>
Date: Wed, 10 Jun 2015 11:36:17 +0200
Subject: [PATCH] certificate check configurable via settings (#7521)

---
 mellon/app_settings.py | 1 +
 mellon/views.py        | 6 ++++--
 2 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/mellon/app_settings.py b/mellon/app_settings.py
index 3dd5b57..1d3cc30 100644
--- a/mellon/app_settings.py
+++ b/mellon/app_settings.py
@@ -26,6 +26,7 @@ class AppSettings(object):
             'ERROR_URL': None,
             'ERROR_REDIRECT_AFTER_TIMEOUT': 120,
             'DEFAULT_ASSERTION_CONSUMER_BINDING': 'post', # or artifact
+            'VERIFY_SSL': True
     }
 
     @property
diff --git a/mellon/views.py b/mellon/views.py
index 6a4a48d..a981330 100644
--- a/mellon/views.py
+++ b/mellon/views.py
@@ -11,7 +11,8 @@ from django.utils.http import same_origin
 
 import lasso
 
-from . import utils
+from . import utils, app_settings
+
 
 class LogMixin(object):
     """Initialize a module logger in new objects"""
@@ -147,7 +148,8 @@ class LoginView(LogMixin, View):
         status_codes = []
 
         result = requests.post(login.msgUrl, data=login.msgBody,
-                headers={'content-type': 'text/xml'})
+                               headers={'content-type': 'text/xml'},
+                               verify=app_settings.VERIFY_SSL)
         if result.status_code != 200:
             self.log.warning('SAML authentication failed: '\
                              'IdP returned %s when given artifact' % result.status_code)
-- 
2.1.4