From 8df6ff3728d505eb6aa1677fa7aac88ce6ec346f Mon Sep 17 00:00:00 2001
From: Yves <yves@motherduck.com>
Date: Wed, 12 Mar 2025 15:14:58 +0100
Subject: [PATCH] Enable server certs verification by default

---
 src/http_server.cpp | 8 +-------
 1 file changed, 1 insertion(+), 7 deletions(-)

diff --git a/src/http_server.cpp b/src/http_server.cpp
index 954365c..667a78c 100644
--- a/src/http_server.cpp
+++ b/src/http_server.cpp
@@ -247,13 +247,7 @@ void HttpServer::HandleGet(const httplib::Request &req,
   httplib::Client client(remote_url);
   client.set_keep_alive(true);
 
-  // Provide a way to turn on or off server certificate verification, at least
-  // for now, because it requires httplib to correctly get the root certficates
-  // on each platform, which doesn't appear to always work. Currently, default
-  // to no verification, until we understand when it breaks things.
-  if (IsEnvEnabled("ui_enable_server_certificate_verification")) {
-    client.enable_server_certificate_verification(true);
-  } else {
+  if (IsEnvEnabled("ui_disable_server_certificate_verification")) {
     client.enable_server_certificate_verification(false);
   }