Xamarin WKWebView Accepting Self-Signed Certificates
I have seen various example online saying how to accept them but I always get An SSL error has occurred and a secure connection to the server cannot be made.
-
To support self-signed certs you have two things to do:
- Allow
NSExceptionAllowsInsecureHTTPLoadson your self-signed domain- Even though you are using
https, your app is flagged as having a trust issue
- Even though you are using
- Bypass certificate security checking
Security Note on 2: Get a CA-issued certificate for any production apps as this completely disables certificate validation on your domain and thus allowing MITM attacks, DNS redirection spoofing of your app, etc... You could pin the cert by including the public cer in the main bundle and checking it against the cert received, but that just means a fake certificate would need to be generated in either the MITM or DNS spoofing attack (and tools for those already exist in the various exploit kits)
Example using the
https://badssl.comsite:WKNavigationDelegate:
public class NavigationDelegate : WKNavigationDelegate { const string host = "self-signed.badssl.com"; public override void DidReceiveAuthenticationChallenge(WKWebView webView, NSUrlAuthenticationChallenge challenge, ActionNote: Assign an instance of this class to the
NavigationDelegateorWeakNavigationDelegateof your WKWebView instance.Info.plist NSAppTransportSecurity:
NSAppTransportSecurity NSExceptionDomains self-signed.badssl.com NSExceptionAllowsInsecureHTTPLoads 讨论(0) - Allow
加载中...
- 热议问题