Skip to content
This repository was archived by the owner on Nov 10, 2023. It is now read-only.

Allow certificates errors only for the Electron-created back end #3208

Merged
katspaugh merged 1 commit into from
Dec 22, 2021
Merged

Allow certificates errors only for the Electron-created back end #3208

katspaugh merged 1 commit into from
Dec 22, 2021

Conversation

@Vasco-jofra
Copy link
Contributor

@Vasco-jofra Vasco-jofra commented Dec 21, 2021

What it solves

This commit ensures that the Electron app allows only the Electron-created backend at https://localhost:5000 to have an invalid (self-signed) certificate.

How this PR fixes it

Instead of appending 'ignore-certificate-errors' to the command line, catch certificate errors and check the associated origin.

Reference: https://www.electronjs.org/docs/latest/api/app#event-certificate-error

@Vasco-jofra
Allow cert errors only for the Electron backend
d8eedd2 
Before, the Electron app would trust any invalid certificate. With
this commit, only the Electron-created backend at https://localhost:5000
can have an invalid (self-signed) certificate.
@github-actions
Copy link

github-actions bot commented Dec 21, 2021

CLA Assistant Lite All Contributors have signed the CLA.

@katspaugh katspaugh requested a review from dasanra December 22, 2021 08:54
@coveralls
Copy link

coveralls commented Dec 22, 2021

Pull Request Test Coverage Report for Build 1607527724

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • No unchanged relevant lines lost coverage.
  • Overall coverage remained the same at 32.278%
Totals Coverage Status
Change from base Build 1607185745: 0.0%
Covered Lines: 3083
Relevant Lines: 8488
💛 - Coveralls

@katspaugh
Copy link
Member

katspaugh commented Dec 22, 2021

Thank you for all the PRs @Vasco-jofra!

dasanra
dasanra approved these changes Dec 22, 2021
View reviewed changes
Copy link
Collaborator

@dasanra dasanra left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you for all your three contributions @Vasco-jofra

@katspaugh katspaugh merged commit 96a8ed2 into 5afe:dev Dec 22, 2021
@github-actions github-actions bot locked and limited conversation to collaborators Dec 22, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

1 more reviewer

@dasanra dasanra dasanra approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@Vasco-jofra @coveralls @katspaugh @dasanra