policy parameter insecure=true is intentionally not documented, it is meant only for testing and people should not use it.
insecure=true