From 6e55b81cb3b0812f70321d77feed2989785bb37d Mon Sep 17 00:00:00 2001
From: Lukas Holecek <hluk@email.cz>
Date: Apr 05 2019 08:46:28 +0000
Subject: Revert "Don't validate the CA of the server when downloading the CA"


This reverts commit e986a9470d6099ec24031b43d726f09337179aa0.

The insecure flag to fetch certificate is no longer needed (fixed on the
cert server).

---

diff --git a/docker/docker-entrypoint.sh b/docker/docker-entrypoint.sh
index f3120ec..1f316cf 100755
--- a/docker/docker-entrypoint.sh
+++ b/docker/docker-entrypoint.sh
@@ -8,7 +8,7 @@ main() {
   # installing CA certificate
   if [ -n "${CA_URL}" ] && [ ! -f "/tmp/.ca-imported" ]; then
     # Since update-ca-trust doesn't work as a non-root user, let's just append to the bundle directly
-    curl -k --silent --show-error --location "${CA_URL}" >> /etc/pki/tls/certs/ca-bundle.crt
+    curl --silent --show-error --location "${CA_URL}" >> /etc/pki/tls/certs/ca-bundle.crt
     # Create a file so we know not to import it again if the container is restarted
     touch /tmp/.ca-imported
   fi