Doing so will affect all https requests which is dangerous.
We have these options to solve this:
1. Use superagent.ca(). Appstore already provides wildcard certs
for dev, staging signed with appstore_ca. But we then need to
send across the appstore_ca cert across in the provision call.
This is a bit of work.
2. Convert superagent into https.request calls and use the
rejectUnauthorized option.
3. Simply use http. This is what is done in this commit.
Fixes#488
