On Thursday, October 4, 2018 at 12:16:49 AM UTC-7, Nicu Pavel wrote: > > > I can disable ssl verification in extension code but not sure if I should > do that as weewx 3.9.0a1 works fine on my side. >
Not quite sure what 3.9.0a1 has to do with python urllib ssl verification..... Anyway, this sounded like a thread I was involved with years ago so I did some googling of the weewx-user group archives... Something very similar came up in 2016 re: wunderfixer (link) <https://groups.google.com/forum/?hl=en&fromgroups=#!searchin/weewx-user/ssl$20certificate%7Csort:date/weewx-user/LgZK7lbAW6I/Gk3E2tA6LAAJ> and I posted a patch to that thread re: how to disable verification for wunderfixer specifically. At that time Tom didn't want to just disable https in order to deal with a third-party site (WU) being broken so my recollection is the patch was never applied to the weewx codebase. If you 'wanted' to disable it for your code, https://stackoverflow.com/questions/19268548/python-ignore-certificate-validation-urllib2/28048260#28048260 might help, but you probably want to default it 'enabled' and make people specifically disable it for your code only via a weewx.conf setting. That said, perhaps just noting the issue in a README and telling people how to manually download the RainMachine self-signed cert might be the best path for you. This sounds like another case where a third party has a semi-broken https setup that they should fix.
