Disabling validation of the SSL host certificate

[msoulier]

Hi,

I'm working with a private box, in house, that uses self-signed certificates. Can I disable the validation of the host certificate when using HTTPS programatically? Is there an example of this?

Thanks,
Mike

[Matthias Käppler]

Hi,

this would require you to register a custom TrustManager, we did this for our Android app (the code is not Android specific though and should work in any Java app using Apache HTTP)

Perhaps you can make use of it:

https://github.com/mttkay/ignition/tree/master/ignition-support/ignition-support-lib/src/main/java/com/github/ignition/support/http/ssl

Regards,

Matthias

--
You received this message because you are subscribed to the Google Groups "Signpost users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to signpost-user...@googlegroups.com.
To post to this group, send email to signpos...@googlegroups.com.
Visit this group at http://groups.google.com/group/signpost-users?hl=en.
For more options, visit https://groups.google.com/groups/opt_out.
 
 

[Michael P. Soulier]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 2013-05-03 3:55 AM, Matthias K�ppler wrote:
> Hi,
>
> this would require you to register a custom TrustManager, we did
> this for our Android app (the code is not Android specific though
> and should work in any Java app using Apache HTTP)
>
> Perhaps you can make use of it:
> https://github.com/mttkay/ignition/tree/master/ignition-support/ignition-support-lib/src/main/java/com/github/ignition/support/http/ssl

Yeah,
>
I've taken this approach.

Leave it up to Java to not use a simple boolean flag to disable
validation. *sigh*

Mike

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (Darwin)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iD8DBQFRhCfoKGqCc1vIvggRAiRZAJ97zDfW+7s0ZapXcQjLLK130lsBUgCgrEuN
yRykBCjLKHavQ2CS/0JSFFc=
=ffjQ
-----END PGP SIGNATURE-----