Oops, forgot the link. https://github.com/wymsee/cordova-HTTP On 18 Feb 2015 8:28 am, "Tommy Williams" <to...@devgeeks.org> wrote:
> Interesting work. I like how you really went the extra mile. > > This is essentially what we have had to do at SpiderOak in order to have > certificate pinning in a Cordova app. > > We use the Cordova-HTTP plugin[1] and a JavaScript shim to send all of our > xhr API calls through it, then we have a modified fork of the file-transfer > plugin for downloading files etc. Both of these plugins support certificate > pinning and, by the end of this week, certificate authentication as well. > > Have you considered adding certificate pinning to your plugin to make it a > more secure option than the browser xhr? > On 18 Feb 2015 2:49 am, "Andrew Grieve" <agri...@chromium.org> wrote: > >> Neat stuff! Thanks for sharing. >> >> On Tue, Feb 17, 2015 at 5:42 AM, Brien Colwell <br...@nextop.io> wrote: >> >> > Hi All, >> > >> > I spent some time researching how much of the webview network stack I >> > could replace with a Cordova plugin on Android. I wrote a post about it >> - >> > >> > https://github.com/nextopio/nextop-client/blob/master/ >> > docs/02.16.2015_CUSTOM_XMLHTTPREQUEST.md >> > >> > The take away is that a Cordova can fully replacing the default XHR and >> > image loading in the webview for async=true, but it can't do async=false >> > (but who uses that anyway :/). This is cool because plugins can >> experiment >> > with new wire protocols to get data to the client. >> > >> > Best, >> > Brien >> > >> > >> > --------------------------------------------------------------------- >> > To unsubscribe, e-mail: dev-unsubscr...@cordova.apache.org >> > For additional commands, e-mail: dev-h...@cordova.apache.org >> > >> > >> >
