Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

https localhost invalid #115

Closed
guzishiwo opened this issue Nov 11, 2021 · 2 comments
Closed

https localhost invalid #115

guzishiwo opened this issue Nov 11, 2021 · 2 comments

Comments

@guzishiwo
Copy link

guzishiwo commented Nov 11, 2021
edited
Loading

I open a local server for WKWebView. When I use http normally, but https, it is invalid to add a certificate. I use the certificate provided in demo.
But Xcode throw Error:
WebPageProxy::didFailProvisionalLoadForFrame: frameID=3, domain=NSURLErrorDomain, code=-1200 

class ViewController: UIViewController, WKNavigationDelegate {
    var server: TelegraphServer!
    var webView: WKWebView!

    override func viewDidLoad() {
        super.viewDidLoad()
        // Do any additional setup after loading the view.
        
        server = TelegraphServer()
        server.start()
        
        let url = URL(string: "https://localhost:9000/")!
        webView.load(URLRequest(url: url))
        webView.allowsBackForwardNavigationGestures = true
    }
    
    override func loadView() {
        webView = WKWebView()
        webView.navigationDelegate = self
        view = webView
    }
}

class TelegraphServer: NSObject {

    func start() {
        // Comment out this line if you want HTTP instead of HTTPS
        loadCertificates()
        setupServer()
    }
    
    private func loadCertificates() {
      // Load the P12 identity package from the bundle
      if let identityURL = Bundle.main.url(forResource: "localhost", withExtension: "p12") {
        print("indentityUrl \(identityURL)");
        identity = CertificateIdentity(p12URL: identityURL, passphrase: "test")
      }

      // Load the Certificate Authority certificate from the bundle
      if let caCertificateURL = Bundle.main.url(forResource: "ca", withExtension: "der") {
        caCertificate = Certificate(derURL: caCertificateURL)
      }

      // We want to override the default SSL handshake. We aren't using a trusted root
      // certificate authority and the hostname doesn't match the common name of the certificate.
      if let caCertificate = caCertificate {
        tlsPolicy = TLSPolicy(commonName: "localhost", certificates: [caCertificate])
      }
    }
}
@dot-wei2021
Copy link

dot-wei2021 commented Nov 12, 2021
edited
Loading

I have solved. WKwebview need trust

    func webView(_ webView: WKWebView, didReceive challenge: URLAuthenticationChallenge, completionHandler: @escaping (URLSession.AuthChallengeDisposition, URLCredential?) -> Void) {
        
        if let serverTrust = challenge.protectionSpace.serverTrust {
            let credential = URLCredential(trust: serverTrust)
            completionHandler(.useCredential, credential)
        }else{
            completionHandler(.useCredential, nil)
        }
    }

@yvbeek
Copy link
Member

yvbeek commented Aug 12, 2022

Hi, sorry I haven't been really active in this project. Glad you found the solution.

Certificates can only be trusted if they have been issued by one of the trusted certificate authorities. Otherwise you need to explicitly trust the certificate on the client, like you did in your code.

In the demo app we do this using these lines: https://github.com/Building42/Telegraph/blob/main/Examples/Demo/TelegraphDemo.swift#L213

@yvbeek yvbeek closed this as completed Aug 12, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@yvbeek @guzishiwo @dot-wei2021