Yusuf Suleman 7c05ef14c7 fix(gateway): remove no-verify SSL context from proxy (#7) ...

All internal services use plain HTTP (Docker network). The
_internal_ssl_ctx with disabled cert verification was a no-op
for HTTP URLs but suggested TLS bypass was in use.

- Removed _internal_ssl_ctx from config.py
- Removed ssl import from config.py
- proxy.py now calls urlopen() without context parameter
- External calls (OpenAI, SMTP2GO, Open Library) already use
  default TLS verification

Verified: dashboard, trips, fitness, budget, inventory all respond correctly.

2026-03-29 13:46:11 -05:00

2.3 KiB

Raw Permalink Blame History

View Raw