This pull request will allow a self signed certificate on the Home Assistant server without needing to use NODE_TLS_REJECT_UNAUTHORIZED=0.
Using NODE_TLS_REJECT_UNAUTHORIZED=0 also stops TLS verification checks for every other plugin that is enabled in the user's Homebridge config, even those making connections out to the internet, which makes using this approach very insecure.
This change allows TLS verification checks to be disabled via the config.json file specifically for this plugin.
"verify_ssl": false
TLS checks remain enabled by default for users who do not set the verify_ssl option and users who currently use NODE_TLS_REJECT_UNAUTHORIZED=0 to disable TLS verification can continue to do so.
This pull request will allow a self signed certificate on the Home Assistant server without needing to use
NODE_TLS_REJECT_UNAUTHORIZED=0
.Using
NODE_TLS_REJECT_UNAUTHORIZED=0
also stops TLS verification checks for every other plugin that is enabled in the user's Homebridge config, even those making connections out to the internet, which makes using this approach very insecure.This change allows TLS verification checks to be disabled via the
config.json
file specifically for this plugin.TLS checks remain enabled by default for users who do not set the
verify_ssl
option and users who currently useNODE_TLS_REJECT_UNAUTHORIZED=0
to disable TLS verification can continue to do so.