Avoid disabling SSL certificate verification

[ashokak]

Since 7.10, curl will verify the certificate by default.
Users who get certificate errors should check their curl installation/configuration, and fix that, rather than connecting to anyone claiming to be FreshBooks.

(Thanks for the handy library; hope this is a useful change.)

[jboesch]

I don't want it to check a certificate by default. I don't think most people will have this.
If you're going to make a change like this, I would rather it be configurable. Like, have it like you do by default. But if the user chooses, they can set SSL_VERIFYPEER to false.

Maybe a 3rd param to init that allows you to specify options.

$options = array(
'ssl' => false
);
FreshBooksRequest::init($domain, $token, $options);

[ashokak]

Understandable.

How about this. Same secure-by-default behaviour, but instead of a bag of options to init(), an explicit method to disable the verification?