Comment 1 for bug 1630513

Could you please explain the use case of the application you are building. Is this application browser based and trying to connect with API server that has SSL enabled?

We have drawn a parallel to the openstack params and defined key, cert and ca and mandated key file in case the server (keystone) has cert_required and assumed that it should be passed always, even if we are providing the same file as the cert/ca in the keyfile parameter.

The cert_required param is deprecated in liberty and mitaka and hence we could also relax the keyfile parameter in the clients connecting to the API server, pretty much like what you have done above.