Skip to content

Allow ignoring certificate errors #626

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Apr 6, 2022
Merged

Allow ignoring certificate errors #626

merged 2 commits into from
Apr 6, 2022

Conversation

@javierlarota
Copy link

@javierlarota javierlarota commented Nov 26, 2021
edited
Loading

The Electron app fails when using a self-signed certificate for https communications with its ASP.NET Core backend. The native electron framework allows to ignore or bypass certificate errors. I am exposing this feature to Electron.NET

There will be two ways to bypass certificate errors:

  1. By adding this flag to the electron.manifest.json file: "ignoreAllCertificateErrors": true it will allow to ignore all cert errors. This option is less secure

  2. By adding a list of domain names that we want to ignore certificate errors for in the electron.manifest.json file:

  "domainNamesToIgnoreCertificateErrors": [
    "localhost",
    "127.0.0.1",
    "www.insecure.site.com"
  ],

@javierlarota
Allow ignoring certificate errors when using an untrusted self-signed…
d9d655c 
… certificate for https communication with the AspCore backend.

We can ignore all cert errors or only cert errors from specific domain names configured in electron.manifest.json
@javierlarota javierlarota mentioned this pull request Nov 26, 2021
Closed
danatcofo
danatcofo reviewed Dec 7, 2021
View reviewed changes
ElectronNET.Host/main.js Outdated
// Bypass SSL/TLS certificate errors only for the domain names specified in the electron.manifest.json file.
if (manifestJsonFile.hasOwnProperty('domainNamesToIgnoreCertificateErrors')) {
if (manifestJsonFile.domainNamesToIgnoreCertificateErrors.length > 0) {
manifestJsonFile.domainNamesToIgnoreCertificateErrors.forEach(function (site) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This can be reduced to a single log file

console.log(`SSL/TLS certificate errors will be ignored for ${manifestJsonFile.domainNamesToIgnoreCertificateErrors.join(', ')}`);

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice! I made the change. Thanks

@GregorBiswanger GregorBiswanger self-assigned this Apr 6, 2022
@GregorBiswanger GregorBiswanger added this to the 18.6.1 milestone Apr 6, 2022
@GregorBiswanger GregorBiswanger merged commit 4afa535 into ElectronNET:master Apr 6, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@GregorBiswanger GregorBiswanger Awaiting requested review from GregorBiswanger

1 more reviewer

@danatcofo danatcofo danatcofo left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

@GregorBiswanger GregorBiswanger

Labels

None yet

Projects

None yet

Milestone

19.6.1

Development

Successfully merging this pull request may close these issues.

3 participants

@javierlarota @danatcofo @GregorBiswanger