Add SDK env variable for OTLP TLS skip verify

[pavolloffay]

What are you trying to achieve?

I would like to configure OTLP exporter in SDK with env var to skip SSL verification. The variable is not currently supported https://opentelemetry.io/docs/specs/otel/protocol/exporter/

What did you expect to see?

Additional context.

Created from https://github.com/open-telemetry/opentelemetry-operator/issues/1818

[danielgblanco]

Thanks @pavolloffay , there's currently a moratorium on env vars as described in this comment

https://github.com/open-telemetry/opentelemetry-specification/issues/2891#issuecomment-1289241503

I have added this to the Configuration SIG backlog and they will be able to pick it up as they stabilise declarative configuration.

[marcalff]

How is this different from OTEL_EXPORTER_OTLP_INSECURE ?

[danielgblanco]

The difference, as I understand it, is that OTEL_EXPORTER_OTLP_INSECURE results in no TLS encryption, while this requested feature would allow for TLS encryption while skipping certification verification.

[SylvainJuge]

Hi !

Having a dedicated config option/env variable to disable certificate validation would be great, in particular for use-cases that involve local deployments and self-signed certificates.

Since exporter options are also defined on a per-signal basis, maybe as an alternative we could use a "magic value" with the existing OTEL_EXPORTER_OTLP_CERTIFICATE config option and its per-signal alternatives. For example setting OTEL_EXPORTER_OTLP_CERTIFICATE=* could work without breaking existing implementations as * is not a suitable file path.