I am receiving this exception, when I try to access a secure site in my App. I am using DefaultHttpClient & BasicHttpParams classes for Http communication..........................
View 16 Replies
Anyone else experiencing this problem or know of a solution? I have a Digicert signed https certificate that is throwing an SSLException (Not trusted server certificate). This doesn't make any sense as Digicert is a recognized certificate authority. I can connect to my https url without a problem via IE, Firefox, and Safari so they appear to have no issue with the certificate. Here's the code I'm using. Very simple stuff......................
View 3 Replies View RelatedI access asp.net web service..! My web service name is "https://192.168.1.2/Sample/service.asmx" But it will show the following Exception "javax.net.ssl.SSLException: Not trusted server certificate" This is my code...............
View 7 Replies View RelatedI have been trying to use httpclient to post data on https (secure). I have searched all forums of android but I could not find any solution that works with httpclient on https. I have seen some solutions using HttpsURLConnection. and SSLContext. I would like to go with httpclient not URLConnection as I require to manage cookies and al. I am looking for your exert advice on above matter..............
View 3 Replies View RelatedI am getting "javax.net.ssl.SSLException: Not trusted server certificate" exception when I am trying to hit https URL (.Net Webservice) from my android app. Below is my code:
HttpParams myParams = new BasicHttpParams();
HttpProtocolParams.setVersion(myParams, HttpVersion.HTTP_1_1);
HttpProtocolParams.setContentCharset(myParams, "utf-8");
myParams.setBooleanParameter("http.protocol.expect-continue", false);.................
I want to use HttpPost over https/ssl. I get 'Not trusted server certificate' error. I've found a lot of posts, seems that many people have similar problems and I've found two suggestions: 1) Change server's certificate. Current certificate is self-signed as localhost.localdomain. Unfortunetly it's not my server and I cannot change the certificate. 2) Use HttpsUrlConnection instead of HttpClient. But I cannot use it because sometimes (when response's code is 401 or 403) I got IOException during getting response code or reading inputstream.
So I've found 3rd solution - use httpclient, when system throws excetpion 'not trusted server certificate' than display warning, inform user that certificate is not trusted and ask if he wants to add this one to the keystore (webbrowser works this way). But I've no idea how to get certificate from the server and add to keystore.
I'm currently trying to write a basic program that can parse json code which is generated by a php file saved on a server. The server is a HTTPS sever and I'm getting the following error.
I know where to get the ssl certificate for the server but even with it installed on my machine (on which i test the code on an emulator) , I still get the following error:
javax.net.ssl.sslexception: not trusted server certificate
Is there any way I can get the app to trust the sever specifically or get the app to trust all servers regardless of certificates.
I have a Small Business 2008 Server at home with Exchange 2007 tied to my RoadRunner account. Setting up my new EVO to use Exchange a month ago was a breeze and I haven't had any problems with it until this morning.
When I turned my phone on, I kept getting a trusted certificate error over and over. I am using a self-signed certificate on my server -- which I thought would give me a problem when I initially configured it, but it didn't. I was expecting to have to install the certificate manually.
After a few minutes, the message went away and I started receiving mail again. I haven't done anything major on the phone that might cause that, like installing an update.
I am trying to setup my email app but it won't let me pass the setup screen because it says that my server is not a trusted one. This is because of the certificate that is instaled on my server. On my desire I could click on continue but on the galaxy it won't let me go any further and it returnes me to the setup screen. Please help me find a way to add my server to the trusted list.
View 2 Replies View RelatedI have looked into various posts about how to retrieve something via HTTPS on Android, from a server that uses a self-signed certificate. However, none of them seem to work - they all fail to remove the "javax.net.ssl.SSLException: Not trusted server certificate" message. It is not an option to modify the server to have a trusted certificate, and it is also not an option to make the server certificate match the server's IP address. Note, that the server will not have a DNS name, it will only have an IP-address. The GET request looks something like this:
I am fully aware that this solution is prone to man-in-the-middle attacks etc. So, the solution must ignore the lack of trust in the certificate, and ignore the hostname mismatch. Does anybody know the code, that does this, using Java for Android? There are plenty of attempts to explain this on stackoverflow.com, and plenty of code snippets, but they don't seem to work, and nobody has provided one block of code that solves this, as far as I can see. It would be interesting to know if somebody really solved this, or if Android simply blocks certificates that are not trusted.
I'm trying to setup bluetooth trusted devices on my Moto X so I don't have to unlock the phone when I'm near my computer, but for some reason, the bluetooth connection keeps disconnecting whenever the phone goes to sleep. I tried using my Jambox as a trusted device, and it worked fine.
View 1 Replies View RelatedI do not have the keystore that I used when I first created the app and I am wondering if I can create a new certificate using the same details that I used to create the earlier certificate. I have the details available with me.If I do so and update the app using this certificate, will the users get an update notification on their device?
View 9 Replies View RelatedI had configure a Tomcat webserver with SSL and client autification. So I need a clienKey.p12 File to visit the site. If I import the key into Firefox, it works fine.
So I tried to develop a Client from "normal" Java. That works:
CODE:..........
Now I try to develope a Client into Android and I am getting crazy....
Here my two Android implementation:
CODE:...........
I always geht the following Exception:
CODE:................
But the key is the same that I use for the "normal" java Client and for the import into firefox. So the key is valid. But it is signed by me... I don't want to sign it by a commercial Company like verisign.
How do I sign an APK with more than one certificate, so that I can do this when I publish to the Android Market...
View 1 Replies View RelatedIf I have an apk can I remove the current signing and some how resign it with a different .keystore file and still have the application install?
View 1 Replies View RelatedI'd like to be able to get the MD5 fingerprint of the certificate associated with my app (regardless of whether it's the debug cert or the release cert). You're probably aware that in order to get a Google Maps API key, you need to provide them with the certificate fingerprint of your app so that they can match the key with the fingerprint when you use it so as to ensure it's "really you". I've got a similar situation in which I'd like to make requests against a URL (my server) and would like to pass my app's fingerprint as part of the request. I've got no clue which classes I should be looking at.
View 10 Replies View RelatedIs there any way to create an X509 certificate on the android device?
View 5 Replies View RelatedI need to do is download some basic text-based and image files from a web server that has a self-signed SSL certificate. I have been trying to figure out how to use HttpClient to do this, but getting the SSL to work is a nightmare that seems to be way too much trouble for such a simple task. Is there a better way to perform these file downloads? Perhaps through a WebView or Browser feature? Reinventing the wheel of making a simple HTTPS GET request is a major pain, and is significantly holding up my development schedule.
View 3 Replies View RelatedMy application redirects its users to a known domain (secure.gate2shop.com) that its root certificate doesn't exist on Android devices. Normal PC browsers have no problem accessing the site, but Android browser displays to the user that the certificate is untrusted. I don't want that behavior, not even once, so I'm looking for a way to install this certificate on the device from my app.
View 2 Replies View RelatedI have an application that I want to be able to use the userid: android:sharedUserId="android.uid.system", I need to sign the .apk file with the same certificate as the built in system applications, such as the 'Settings' application. I've located the keystore file in my build directory which is: cacerts.bks, and I have the password for this. What I seem to be missing in order to sign my .apk file is the alias fo the keystore. Does anyone know what the alias is? Or is there an easier way to do this that I'm missing.I know this not a standard thing to do, and is perhaps a hack, but I have a client requirement to meet.
View 2 Replies View Relatedkeytool -list -alias androiddebugkey -keystore ~/.android/debug.keystore. -storepass android -keypass android I'm not sure how I can sign my debugkey so that I can use Google Maps. I have verified in Eclipse that this is where my debugkey is stored.
View 1 Replies View RelatedI just published my first application to the market and the "Just in" display show my icon and app name, but under the app name is shows my birth certificate name! How can I change this? Is it something I am missing in my manifest? I'm sure my mom would it; but me -- not so much.
View 11 Replies View RelatedMy debug.keystore certificate has expired. Does anyone know how to force Android to regenerate either certificate or the whole directory under
View 2 Replies View RelatedI have a hosting account at godaddy ruinning Linux. Is has MySQL. I am creating a J2ME application that runs on android and I was wondering if there is any simpler way to connect from j2me application to my MySQL server?
Is it required to install anything at my server? which I cannot do because of the shared account. Any way to just open the connection, update some data in the MySQL from j2me application?
I want to connect to a server using ssl/https connection. During handshake between client and the server, I want to have server certificate authentication as well as client certificate authentication. The server certificate authentication is successful. But I don't know how to send client certificate to server for authentication, during the handshake.
View 4 Replies View RelatedI've posted this on Android Security as well, but that group does not appear to have as much activity. Actually I guess my question belongs in this group anyway, even though it touches on some of the security aspects of android packages. My goal is to access the certificate that was used to sign the apk package; and ordinarily, I would do that from inside the program like this
Certificates[] signingCertificates = getClass().getProtectionDomain().getCodeSource().getCertificates();
Unfortunately it appears that getProtectionDomain() returns null on android - according to the specs
http://developer.android.com/reference/java/lang/Class.html#getProtec...
This method might return null (to converse space?) but only for system classes. Since I'm calling this from one of my own classes, I would expect to get a non-null value, but unfortunately not. I have tried from the emulator, and from an application deployed on my phone using adb through a USB cable. I'm using the latest SDK (2.2) and targeting android 1.6. So I guess I have two questions, the first being: why does getProtectionDomain return null, and have anyone had any success using this method from inside an android application. And the second: Is there some other way to access the certificate that a given apk package was signed with (I can live with the restriction that only a given package can know its own certificate).
When I open the browser on my n1 the default page is Google.com. I get an certificate error saying the one I am having is not dated correctly. What to do?
View 4 Replies View RelatedI am using eclipse android plugins to build a project, But i am getting this error in the console window:
[2010-02-03 10:31:14 - androidVNC]Error generating final archive: Debug certificate expired on 1/30/10 2:35 PM!
Reason is i have an apk which works as an installer. When the user installs and opens it, it prompts the user to install another apk (drm free) which was inside the installer apk. However, after signing and zipaligning both with APK Signer tool and Private keys i get this error when installing: an existing package by the same name with a conflicting signature is already installed
basically, both the apk (installer) and apk (theme) have the same package name. When the apk (theme) is installed, it should overwrite the apk (installer).
I think both the installer apk and theme apk should have the same certificates in order to overwrite each other, but i don't know how.
I'm writing an Android app that requires SSL client authentication. I know how to create a JKS keystore for a desktop Java application, but Android only supports the BKS format. Every way I've tried to create the keystore results in the following error:
handling exception: javax.net.ssl.SSLHandshakeException: null cert chain
So it looks like the client is never sending a proper certificate chain, probably because I'm not creating the keystore properly. I'm unable to enable SSL debugging like I can on the dekstop, so that's making this much more difficult than it should be.
For reference the following is the command that IS working to create a BKS truststore:
keytool -importcert -v -trustcacerts -file "cacert.pem" -alias ca -keystore "mySrvTruststore.bks" -provider org.bouncycastle.jce.provider.BouncyCastleProvider -providerpath "bcprov-jdk16-145.jar" -storetype BKS -storepass testtest
Here is the command I've tried that is NOT working to create a BKS client keystore:
CODE:.........................