allow to specify a private certificate (or document how to specify a private certificate)

Current situation

There is no documented ways to specify a certificate to use to check the SSL connection.

Desired outcome

A documented way to use your own certificates.

Analysis

We use the requests library, which makes use of the curl_ca_bundle certificate store. This should be documented.

We should also provide an option to specify a certificate chain to use, without having to rely on curl_ca_bundle.

Solution

A --verify option has been added. It can be true (the default), false (in which case de verification is disabled), or a path to a file that contains the certificates to use for the verification (the server certificate, all intermediate certificates, and the root certificate).

The documentation part is on the orchestrator project (orchestrator#78 (closed))