Open mtimani opened 10 months ago
Doing so (ignoring certs for notifications) could mean that an attacker intercepts these notifiations as they are no longer as MITM attacks are possible in this case.
Wouldn't it be better to either
100% Nevertheless, you provide the same feature as an option (tick box) for monitoring. Why not add the same button to ignore (in case the person wants it) the SSL certificate. Leaving by default the secure option (validating the certificate)
⚠️ Please verify that this feature request has NOT been suggested before.
🏷️ Feature Request Type
New Notification
🔖 Feature description
The RocketChat Notifications does not have an ignore self-signed SSL certificates button. Thus, rendering it impossible to configure a webhook on a self-hosted RocketChat server.
✔️ Solution
Add a button (like for the Monitors) to ignore SSL certificates of RocketChat servers
❓ Alternatives
No response
📝 Additional Context
No response