From 330105ca6f1b10a990de98bbbf38b7cd539d8350 Mon Sep 17 00:00:00 2001
From: Andrew Block <andy.block@gmail.com>
Date: Mon, 12 Dec 2022 10:40:38 -0600
Subject: [PATCH] Reimplemented change in httpgetter for insecure TLS option

Signed-off-by: Andrew Block <andy.block@gmail.com>
Signed-off-by: Tom Runyon <tom@defenseunicorns.com>
---
 pkg/getter/httpgetter.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pkg/getter/httpgetter.go b/pkg/getter/httpgetter.go
index fc4a1b8ef..b53e558e3 100644
--- a/pkg/getter/httpgetter.go
+++ b/pkg/getter/httpgetter.go
@@ -123,7 +123,7 @@ func (g *HTTPGetter) httpClient() (*http.Client, error) {
 		}
 	})
 
-	if (g.opts.certFile != "" && g.opts.keyFile != "") || g.opts.caFile != "" {
+	if (g.opts.certFile != "" && g.opts.keyFile != "") || g.opts.caFile != "" || g.opts.insecureSkipVerifyTLS {
 		tlsConf, err := tlsutil.NewClientTLS(g.opts.certFile, g.opts.keyFile, g.opts.caFile, g.opts.insecureSkipVerifyTLS)
 		if err != nil {
 			return nil, errors.Wrap(err, "can't create TLS config for client")