android - How to Handle SSL certification validation in proper way? -

-

hello application live , using "https" protocol. google play team throws warning below.

"your app(s) listed @ end of email use unsafe implementation of interface x509trustmanager. specifically, implementation ignores ssl certificate validation errors when establishing https connection remote host, thereby making app vulnerable man-in-the-middle attacks. attacker read transmitted data (such login credentials) , change data transmitted on https connection. if have more 20 affected apps in account, please check developer console full list.

to handle ssl certificate validation, change code in checkservertrusted method of custom x509trustmanager interface raise either certificateexception or illegalargumentexception whenever certificate presented server not meet expectations. google play block publishing of new apps or updates containing unsafe implementation of interface x509trustmanager."

in project using custom http client handle https instead default httpclient. code below.

    public static httpclient getnewhttpclient() {             try             {                 keystore truststore = keystore.getinstance(keystore.getdefaulttype());                 truststore.load(null, null);                  mysslsocketfactory sf = new mysslsocketfactory(truststore);                 sf.sethostnameverifier(sslsocketfactory.allow_all_hostname_verifier);                  httpparams params = new basichttpparams();                 httpprotocolparams.setversion(params, httpversion.http_1_1);                 httpprotocolparams.setcontentcharset(params, http.utf_8);                  schemeregistry registry = new schemeregistry();                 registry.register(new scheme("http", plainsocketfactory.getsocketfactory(), 80));                 registry.register(new scheme("https", sf, 443));                  clientconnectionmanager ccm = new threadsafeclientconnmanager(params, registry);                  return new defaulthttpclient(ccm, params);             }             catch (exception e)             {                 return new defaulthttpclient();             }         }  public static class mysslsocketfactory extends sslsocketfactory {         sslcontext sslcontext = sslcontext.getinstance("tls");          public mysslsocketfactory(keystore truststore) throws nosuchalgorithmexception, keymanagementexception, keystoreexception, unrecoverablekeyexception {             super(truststore);              trustmanager tm = new x509trustmanager() {                 public void checkclienttrusted(x509certificate[] chain, string authtype) throws certificateexception {                 }                  public void checkservertrusted(x509certificate[] chain, string authtype) throws certificateexception {                 }                  public x509certificate[] getacceptedissuers() {                     return null;                 }             };              sslcontext.init(null, new trustmanager[] { tm }, null);         }          @override         public socket createsocket(socket socket, string host, int port, boolean autoclose) throws ioexception, unknownhostexception {             return sslcontext.getsocketfactory().createsocket(socket, host, port, autoclose);         }          @override         public socket createsocket() throws ioexception {             return sslcontext.getsocketfactory().createsocket();         }     }

how overcome problem? hoping favorable answers.

now have posted code concerned, difficult see part of quoted message don't understand.

the fix remove trustmanager part of code altogether, root , branch, , use default one, , deal whatever problems may arise in proper way, adjusting contents of truststore trust certificates need trust aren't trusted default. if any, there shouldn't be.


Comments

Post a Comment

Popular posts from this blog

java - Run spring boot application error: Cannot instantiate interface org.springframework.context.ApplicationListener -

-
i have spring project , try make use spring boot , run @ embadded tomcat following : https://spring.io/guides/gs/rest-service/ this application //@configuration //@enableaspectjautoproxy @springbootapplication @componentscan(basepackages = "gux.prome") public class application { public static void main(string[] args) { springapplication.run(application.class, args); } } if use maven command: mvn spring-boot:run , project starts fine, need debug , run main method @ intelij, exception occurs: exception in thread "main" java.lang.illegalargumentexception: cannot instantiate interface org.springframework.context.applicationlistener : org.springframework.boot.logging.classpathloggingapplicationlistener @ org.springframework.boot.springapplication.createspringfactoriesinstances(springapplication.java:414) @ org.springframework.boot.springapplication.getspringfactoriesinstances(springapplication.java:394) @ org.springframework.bo...
Read more

reactjs - React router and this.props.children - how to pass state to this.props.children -

-
i'm using react-router first time , don't know how think in yet. here's how i'm loading components in nested routes. entry point .js reactdom.render( <router history={hashhistory} > <route path="/" component={app}> <route path="models" component={content}> </route> </router>, document.getelementbyid('app') ); app.js render: function() { return ( <div> <header /> {this.props.children} </div> ); } so child of app content component sent in. i'm using flux , app.js has state , listens changes, don't know how pass state down this.props.children. before using react-router app.js defines children explicitly, passing state natural don't see how now. using couple of react helper methods can add state, props , whatever else this.props.children render: function() { var children = react.ch...
Read more

Excel VBA "Microsoft Windows Common Controls 6.0 (SP6)" Location Changes -

-
i have excel workbook used generate quotations customers. there main page user inputs data, , there buttons generate various pdfs , send them customer. however, 1 user consistently getting error preventing generating , sending pdfs. i beleive "microsoft windows common controls 6.0 (sp6)". it's installed on users' computers. on mine, location "c:\windows\syswow64\mscomctl.ocx" on others "c:\windows\system32\mscomctl.ocx" the user experiencing issues on 32-bit machine, "mscomctl.ocx" file should in system32. have manually put in there, , pointed common controls reference in vba it. issue seems keep reverting looking in syswow64. since folder doesn't exist, can't find it, , can't produce pdfs. i thought perhaps issue user running older version of office (2007) there users on 2013 , 2016. thought perhaps mixture of 64-bit , 32-bit users. user gets sent workbook other users (as quotation process goes further, gets passed ...
Read more