added option to disable ssl verification

main.py

@@ -36,6 +36,7 @@ def get_config():
         'api_secret': os.environ['OPNSENSE_API_SECRET'],
         'host': os.environ['OPNSENSE_HOST'],
         'output_directory': os.environ.get('OUTPUT_DIRECTORY', './certs'),
+        'verify_ssl': os.environ.get('VERIFY_SSL', 'true').lower() != 'false',
         'file_owner': os.environ.get('FILE_OWNER'),
         'file_group': os.environ.get('FILE_GROUP'),
         'file_mode': os.environ.get('FILE_MODE'),
@@ -45,14 +46,23 @@ def get_config():
 def search_certificates(config, search_phrase):
     url = f"{config['host']}/api/trust/cert/search"
     payload = {"searchPhrase": search_phrase}
-    response = requests.post(url, json=payload, auth=HTTPBasicAuth(config['api_key'], config['api_secret']))
+    response = requests.post(
+        url,
+        json=payload,
+        auth=HTTPBasicAuth(config['api_key'], config['api_secret']),
+        verify=config['verify_ssl']
+    )
     response.raise_for_status()
     return response.json().get("rows", [])
 
 
 def export_certificate(config, uuid, format):
     url = f"{config['host']}/api/trust/cert/generate_file/{uuid}/{format}"
-    response = requests.post(url, auth=HTTPBasicAuth(config['api_key'], config['api_secret']))
+    response = requests.post(
+        url,
+        auth=HTTPBasicAuth(config['api_key'], config['api_secret']),
+        verify=config['verify_ssl']
+    )
     response.raise_for_status()
     return response.json().get("payload")