Currently at least 2 different locations specify that that certificate bundle in fb_ca_chain_bundle is used for SSL verification. This will cause ssl verification errors for developers whose companies use SSL inspection solutions. Recommend to either remove the code setting this entirely, or add an option to allow passing in extra certificates and documentation to back this. The former would be preferred. Currently developers would need to modify the library to add their company certificates.
Currently at least 2 different locations specify that that certificate bundle in fb_ca_chain_bundle is used for SSL verification. This will cause ssl verification errors for developers whose companies use SSL inspection solutions. Recommend to either remove the code setting this entirely, or add an option to allow passing in extra certificates and documentation to back this. The former would be preferred. Currently developers would need to modify the library to add their company certificates.
The two locations:
And there is an additional reference set here: