ssl - android - https with server having self-signed certificate -
i next android's tutorial of https untrusted certificate. see here.
they have provided sample code of scenario when ca untrusted. have scenario of self-signed certificate on server. can't figure out replace next in sample code :
inputstream cainput = new bufferedinputstream(new fileinputstream("load-der.crt")); // can't figure out crt ? // don't have access path straight url for self signed certificate :
you can create own trustmanager, time trusting server certificate directly. do have separately server's self-signed certificate ? api not me automatically in way ?
do have separately server's self-signed certificate ?
i don't know "separately" means in context, need keystore containing self-signed certificate purposes of validation.
will api not me automatically in way ?
how it? point behind validating certificate confirm indeed correct, , user not victim of man-in-the-middle attack. self-signed certificate, need relevant details create validation.
fwiw, if find stuff bit complex set up, have a trustmanagerbuilder in my cwac-security library can help bit.
android ssl
No comments:
Post a Comment