Martin, This bug is just related to the required dialog that will be shown to the user. It does not include the logic that is used to ensure that the correct thing is done. I have done in such a way because I believe that having bugs with a single concern is the way to go. That is missing UI, later logic to show the ui and behave accordingly.
Leaving the scope of the bug aside, the situation in which such a certificate mismatch might occur is very limited since we are dealing with the proxy settings and not a general web page. Lets assume that the certificate is wrong, what could have happened: * User used the IP of the proxy rather than the domain used in the certificate. * The company forces the user to use the proxy with a bad set up certificate (I have work in a number of companies than do such a thing) If we let the user accept the certificate this will be a pinned certificate, that is, the user explicitly decided to accept the certificate. Preventing the user from doing stupid things is a lovely goal, but preventing them getting their software from working because someone in their corporation screwed up (bad certificate) is not. I have been talking with upstream (Gnome) recently of giving a hand with http://developer.gnome.org/gcr/unstable/gcr-Trust-Storage-and- Lookups.html so that it can be used in Ubuntu One and more widely used in the desktop which, I believe, the way to go. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/933729 Title: [UIFe] Provide a dialog so that a user can accept SSL certificates To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-sso-client/+bug/933729/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
