cordova-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From brad <>
Subject [GitHub] cordova-plugin-inappbrowser pull request: give the ability to trus...
Date Tue, 21 Jul 2015 23:01:25 GMT
GitHub user brad opened a pull request:

    give the ability to trust a certificate authority

    We found ourselves in a position where we needed to access a site with a certificate issued
by a CA not trusted by default in Android. In this case the browser fails silently and remains
blank. This is the workaround we came up with:
    * You save the CA certificate to `www/trusted-ca.der` when building your cordova app.
    * When the plugin loads an https site, the CA gets added to the trusted CAs for `HttpsUrlConnection`
    * When an `SSLError` is received, we do the following:
      * Check if the domain of the URL the error is about is in the whitelist (which starts
out empty). If so, we ignore the error and proceed.
      * If not, we check if `HttpsUrlConnection` can connect to the domain without a problem.
If so, we add it to the whitelist, ignore the error and proceed. If not, we fail.

You can merge this pull request into a Git repository by running:

    $ git pull trust_ca

Alternatively you can review and apply these changes as the patch at:

To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:

    This closes #111
commit 0f8001175968380830cc47d7a3ab9ed116d09eb5
Author: Brad Pitcher <>
Date:   2015-07-10T22:25:20Z

    give the ability to trust a certificate authority


If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at or file a JIRA ticket
with INFRA.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message