it looks like we made a special dispensation for this in golang, but don't have a helper in the python client, it should be possible to create a new type of authorizer that copies the insecure authorizor code and removes the host checking