Open
Description
No mention on how to stop verifying the certificates for clickhosue
the alternatives for verification mode is not specified (just "relaxed" has been mentioned")
Also for "invalidCertificateHandler" there are no other options but "RejectCertificateHandler" and I just took a guess.
The following works with clikhouse-client
<openSSL>
<client>
<loadDefaultCAFile>false</loadDefaultCAFile>
<cacheSessions>true</cacheSessions>
<disableProtocols>sslv2,sslv3</disableProtocols>
<preferServerCiphers>true</preferServerCiphers>
<verificationMode>none</verificationMode> <!-- Disable certificate verification -->
<invalidCertificateHandler>
<name>AcceptCertificateHandler</name> <!-- Accept any certificate -->
</invalidCertificateHandler>
</client>
</openSSL>