Opt-out of "HTTPs everywhere" by setting allowInsecureConnections to true

[heng-liu]

When a non-HTTPS source is used, there will be an warning/error (blog).
We need to provide a way to opt-out of this behavior, by setting allowInsecureConnections to true in NuGet.Config.
Spec: https://github.com/NuGet/Home/blob/dev/proposed/2023/InsecureConnectionsDisableCertificateValidation.md

• add an allowInsecureConnections property in NuGet.Config
• do not warn for HTTP sources in PackageReference restore scenarios in all NuGet tools
• do not warn for HTTP sources in packages.config restore scenarios
• do not warn for HTTP sources when http sources are used in push/delete operations
• do not warn for HTTP sources when http sources are used in search/list package
• do not warn for HTTP sources when http sources are used in source command
• Do not show warning icons to HTTP sources in VS Options NuGet Package Manager when allowInsecureConnections is true
• Opt-out of "HTTPS everywhere" for other scenarios

[ZenithElevate]

So, what happened to this?
Where did this go?

allowInsecureConnections="true" still is not working for push operations.

Self-signed certificates are not accepted, not even after adding them and CA to the machine cert store.
We are essentially prevented from pushing nuget packages to our own nuget servers, unless we endure the trouble of obtaining trusted 3d party SSL certs. Oh, well, on a 2nd thought, I have no idea whether obtaining a trusted cert is a solution because I have yet to see that work.

This is not reasonable.