Why I can't accept my self-sign server certificate?

Why I can't accept my self-sign server certificate?

by José Eduardo Martins -
Number of replies: 2

We have a moodle server with apache ssl self sign certificate.

Why you dont enable, as firefox or chrome, the option to trust in this cert with my on risc about security in moodle mobile app?

Why you need I pay for certificate? 

Why CAcert is not acceptable? I trust in CAcerts!


[]'s

---

Eduardo

Average of ratings: -
In reply to José Eduardo Martins

Re: Why I can't accept my self-sign server certificate?

by Juan Leyva -
Picture of Core developers Picture of Moodle HQ Picture of Particularly helpful Moodlers Picture of Plugin developers Picture of Testers

Hello,

the app accepts the certificates authorities that Android browser accepts, it's not something we can change.

We don't have plans for allowing SSL self signed certificates, it's something not compatible with the current app authentication system (we did some research, we cannot allow specific sites in the app for using self signed; The only way will be to allow all the sites the app can connect to use untrusted certificates and this is a major security risk)

Cheers, Juan

Average of ratings: -
In reply to Juan Leyva

Re: Why I can't accept my self-sign server certificate?

by José Eduardo Martins -

OK, Juan,

Thanks for your reply and your great job.

[Pay for certificates is not simple if you work in public university, as I am]

Cheers.

---

Eduardo



Average of ratings: -