I'm making an attempt to get rid of the Insecure Request Warning and a couple more errors.
Right now this PR only changes the method for CA generation to utilize SAN entries and fix SubjectAltNameWarning; next step is to start using certifi and make Puppet append our CA to the certifi store. This way we can use requests on the host with whatever Python app we want and get our cert verified; basically, it's a substitution for the global CA store which requests can use.
I'm making an attempt to get rid of the Insecure Request Warning and a couple more errors.
Right now this PR only changes the method for CA generation to utilize SAN entries and fix
SubjectAltNameWarning
; next step is to start usingcertifi
and make Puppet append our CA to thecertifi
store. This way we can userequests
on the host with whatever Python app we want and get our cert verified; basically, it's a substitution for the global CA store whichrequests
can use.