This looks very useful, and the new API looks like good progress. I seem to deal with decentralized services a lot, so my first question is: do you think there would be a way to dynamically add supported CAs using this API?
Taking F-Droid or ChatSecure as an example: someone uses their own server, when the new server is added to the app, can the app then do a TOFU trust of the CA used for that server using this API? .hc Mark Murphy: > In case anyone's interested, I created a backport of the Android 7.0 > network security configuration subsystem: > > https://github.com/commonsguy/cwac-netsecurity > > It works well with OkHttp3, so-so with HttpURLConnection, and other > interested parties could create bridges to connect it to other HTTP > client APIs. It works back to API Level 17 (Android 4.2). > _______________________________________________ List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev To unsubscribe, email: [email protected]
