diff --git a/api/auth/authproviders.py b/api/auth/authproviders.py
index d91186f39bdad7eaf37bafad1f0bf74f271bebbe..ac508c3c18f9a2dcd1023df9bfa7c97b98c2a96b 100644
--- a/api/auth/authproviders.py
+++ b/api/auth/authproviders.py
@@ -97,7 +97,7 @@ class JWTAuthProvider(AuthProvider):
         }
 
     def validate_user(self, token):
-        r = requests.post(self.config['verify_endpoint'], data={'token': token})
+        r = requests.post(self.config['verify_endpoint'], data={'token': token}, verify=self.config.get('check_ssl', True))
         if not r.ok:
             raise APIAuthProviderException('User token not valid')
         uid = json.loads(r.content).get('mail')