From 148926d7dbe532aed8eceaad85a2a30da9e86c63 Mon Sep 17 00:00:00 2001
From: Marco Ceppi <marco@ceppi.net>
Date: Wed, 22 Jan 2014 08:30:38 -0500
Subject: Add warning when you disable SSL, don't be silly please

---
 Auth/Yadis/ParanoidHTTPFetcher.php | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/Auth/Yadis/ParanoidHTTPFetcher.php b/Auth/Yadis/ParanoidHTTPFetcher.php
index 8f55667..627ea9a 100644
--- a/Auth/Yadis/ParanoidHTTPFetcher.php
+++ b/Auth/Yadis/ParanoidHTTPFetcher.php
@@ -90,11 +90,16 @@ class Auth_Yadis_ParanoidHTTPFetcher extends Auth_Yadis_HTTPFetcher {
             $this->reset();
 
             $c = curl_init();
-            if (defined('Auth_OpenID_DISABLE_SSL_VERIFYPEER') 
+            if (defined('Auth_OpenID_DISABLE_SSL_VERIFYPEER')
                     && Auth_OpenID_DISABLE_SSL_VERIFYPEER === true) {
+                trigger_error(
+                    'You have disabled SSL verifcation, this is a TERRIBLE ' .
+                    'idea in almost all cases. Set Auth_OpenID_DISABLE_SSL_' .
+                    'VERIFYPEER to false if you want to be safe again',
+                    E_USER_WARNING);
                 curl_setopt($c, CURLOPT_SSL_VERIFYPEER, false);
             }
-            
+
             if ($c === false) {
                 Auth_OpenID::log(
                     "curl_init returned false; could not " .
-- 
cgit v1.1