[haiku-bugs] Re: [Haiku] #6493: WebPositive should be able to load pages with unverified SSL certs

  • From: "stippi" <trac@xxxxxxxxxxxx>
  • Date: Tue, 05 Feb 2013 08:14:01 -0000

#6493: WebPositive should be able to load pages with unverified SSL certs
----------------------------------------+----------------------------
   Reporter:  archpaladin1              |      Owner:  stippi
       Type:  enhancement               |     Status:  new
   Priority:  high                      |  Milestone:  R1/beta1
  Component:  Applications/WebPositive  |    Version:  R1/Development
 Resolution:                            |   Keywords:
 Blocked By:                            |   Blocking:
Has a Patch:  1                         |   Platform:  All
----------------------------------------+----------------------------

Comment (by stippi):

 Replying to [comment:9 Freeman]:
 > Just two quick questions, If I set create a function in Webkit to do the
 manipulation of data in Webcore and use Webpositive to access the function
 it would not be a breach right? Also where should the list be stored?

 Sorry for the delay. Yes, putting the function in WebKit, accessing
 WebCore stuff and then accessing the WebKit function from within the
 browser application is the way to go. There are lots of examples of this
 in the code (FrameLoaderHaiku.cpp if memory serves), one example where the
 cURL backend is used is authentication (user/password). Just follow the
 path this data takes through the layers. Never include any WebCore header
 in the browser code and you should be fine.

 As far as were to store the list, only the browser can actually store
 anything. Like I mentioned, you could follow the code path that the cookie
 stuff takes. I hope I wasn't lazy and hardcoded some path, but I believe
 the browser tells the cURL backend, via a WebKit method of course, where
 to load the cookies from. But be aware that I was lazy with the cookie
 stuff, since I knew they were very incomplete and needed a lot more work.
 So I only put some stuff in place to quickly get it working in most cases.
 But for example the constant failures in GMail to connect to the chat are
 probably because of the shallow cookie implementation. In any case, it
 could work similarily for the list of accepted servers with bad SSL
 certificates.

-- 
Ticket URL: <http://dev.haiku-os.org/ticket/6493#comment:11>
Haiku <http://dev.haiku-os.org>
Haiku - the operating system.

Other related posts:

  1. Home
  2. haiku-bugs
  3. Archive
  4. 02-2013