Story #789
Updated by mhrivnak about 9 years ago
Currently, python-requests ships with its own Certificate Authority store, at /usr/lib/python<version>/site-packages/requests/cacert.pem. This means that users cannot manage the certificate store that is used to verify remote Nectar connections using ordinary system management tools, as they might expect.
We should alter Nectar so that it configures python-requests to use the system certificate authority store by default. For bonus points, we could also define a way for users to pass their own certificate store if they wish.
Document this in release notes, including the small risk associated with changing the CA bundle.
.