Security and authentication

Self signed SSL certificate

When using a self signed SSL certificate the API may fail to connect if it cannot verify the SSL certificate. Under the hood the requests library is used and it must be specified where the trusted certificate authority can be found using the environment variable REQUESTS_CA_BUNDLE.


When using this API you may sometimes see a warning:

InsecurePlatformWarning: A true SSLContext object is not available. This
prevents urllib3 from configuring SSL appropriately and may cause certain
SSL connections to fail.

If you encounter this warning, its recommended you upgrade to Python 2.7.9 or higher, or use pyOpenSSL. To use pyOpenSSL simply:

pip install pyopenssl ndg-httpsclient pyasn1

and the requests library used by this API will use pyOpenSSL instead.