Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Pinned Certificate system is different on iOS than Android #997

Open
NicolasBuquet opened this issue Mar 27, 2024 · 0 comments
Open

Pinned Certificate system is different on iOS than Android #997

NicolasBuquet opened this issue Mar 27, 2024 · 0 comments
Labels

Comments

@NicolasBuquet
Copy link
Contributor

NicolasBuquet commented Mar 27, 2024

Sur Android, la fonctionnalité de Pinned Certificate est configurée dans le fichier network_security_config.xml.

Sur iOS, c'est le Matrix-SDK qui regarde si des fichiers .cer sont présent dans le bundle de l'application et les utilisent s'il en trouve.

// If some certificates are included in app bundle, we enable the AFNetworking pinning mode based on certificate 'AFSSLPinningModeCertificate'.
// These certificates will be handled as pinned certificates (only these certificates will be trusted).

Sur iOS, on devrait utiliser le même mode de configuration que sur Android (NSAppTransportSecurity sur iOS) pour intercepter toutes les requêtes HTTP.

Actuellement, celles issues de MapLibre pour la geolocalisation ne sont pas "Certificate Pinned".

Configuration recommandée (et à tester) : https://developer.apple.com/news/?id=g9ejcf8y

Confirmé par @giomfo sur Element iOS : matrix-org/matrix-ios-sdk#1804 (comment)

@NicolasBuquet NicolasBuquet moved this to Backlog in Roadmap Produit Mar 27, 2024
@NicolasBuquet NicolasBuquet changed the title Pinned Certificate system is different than Android Pinned Certificate system is different on iOS than Android Apr 8, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
Status: Backlog
Development

No branches or pull requests

1 participant