breautek commented on issue #975: URL: https://github.com/apache/cordova-plugin-inappbrowser/issues/975#issuecomment-1239781023
Cordova applications in debug mode are configured to ignore SSL certificates as it's expected that untrusted/self-signed certificates may be used in development environments. Release builds are configured to reject invalid/untrusted SSL certificates. Google will test apps that accepts insecure connections and will mark apps as unsafe, and in some cases have been known to contact app developers who allows SSL bypass without justification. Apple has similar policies for their App Store. For these reasons, Cordova cannot provide exception clauses for trusting SSL certificates. It would be recommended to not rely on services that have untrusted SSL errors and instead correct the SSL configuration them. But if you wish to accept insecure SSL connections, you may do so at your own risk by forking the project and making the necessary modifications to allow untrusted SSL connections. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
