Probably, As long as the user is using https on openshift and the mobile-services.json file has the services they are connecting to it should be OK.

The only "downside" is I haven't tested this on Android L which does not support the network-security-config out of the box. I know that there was some work to make trust kit import that file to make it backwards compatible, but I haven't tested it.