ability to disable default SSL cert

[ahmadnassri]

by default Kong has an SSL cert enabled signed by localhost.

there should be a way to disable this certificate (essentially turning the https port into another http port)

[ahmadnassri]

example of this in action: https://mockbin.com

[subnetmarco]

The reason why the SSL port is enabled by default is to allow the SSL Plugin to work without restarting or reloading the Kong cluster (thus avoiding having an exception in the way plugins are being installed).

For a more detailed explanation: #453 (comment)

There are two options:

1. Having a ssl: true property in the configuration file that forcibly disables or enables the SSL port. The SSL plugin won't work if this value is set to 'false' (introduces an exception).
2. Introduce another plugin exception for the SSL Plugin. Installing it the first time requires a full-cluster restart/reload.
3. Both 1 and 2.
4. Keep it as it is.

[subnetmarco]

I think that disabling the SSL port can be done by just not exposing it to the world, by putting a firewall rule in front of it or by using iptables. That would be the best solution that would not affect how plugins work.