Add important security note in ApplicationSettings.ignore_certificate_errors.

cztomczak · cztomczak · commit 4c5d668cd337 · 2016-06-27T07:45:01.000+02:00
diff --git a/docs/Build-instructions.md b/docs/Build-instructions.md
@@ -3,6 +3,7 @@
 NOTE: These instructions are for the master branch (Chrome 51).
 
 There are several types of builds you can perform:
+
 1. You can build CEF Python using prebuilt CEF binaries that were
    uploaded to GH releases (tagged eg. v51-upstream)
 2. You can build both CEF Python and CEF from sources, but note
diff --git a/docs/api/ApplicationSettings.md b/docs/api/ApplicationSettings.md
@@ -159,6 +159,15 @@ internet should not enable this setting. Also configurable using the
 Can be overridden for individual CefRequestContext instances via the
 CefRequestContextSettings.ignore_certificate_errors value.
 
+__IMPORTANT__: This option not only ignores all certificate errors,
+but it also enables caching of content due to custom patch being
+applied (read more in "NOTE ON CACHING" further down). If you don't
+want this caching feature of insecure content then alternatively you
+can ignore certificate errors using the
+RequestHandler.[_OnCertificateError()](#_oncertificateerror)
+callback. Note that disk caching is enabled only when the "cache_path"
+option is set.
+
 __NOTE ON CACHING__: the official CEF Python binary releases incorporate a patch
 that changes the caching behavior on sites with SSL certificate errors
 when used with this setting. Chromium by default disallows caching of
