feat: websocket support self-signed TLS (#504)

* feat: websocket support self-signed TLS

* chore: update release notes

* chore: remove unused comments

Author: medcl

docs/content.en/docs/release-notes/_index.md

@@ -22,6 +22,7 @@ Information about release notes of Coco Server is provided here.
 - feat: add `~/Applications` to the search path #493
 - feat: the chat content has added a button to return to the bottom #495
 - feat: the search input box supports multi-line input #501
+- feat: websocket support self-signed TLS #504
 
 ### 🐛 Bug fix
 - fix: several issues around search #502

src-tauri/Cargo.lock

@@ -63,10 +63,9 @@ tauri-plugin-macos-permissions = "2"
 tauri-plugin-fs-pro = "2"
 tauri-plugin-screenshots = "2"
 applications = { git = "https://github.com/infinilabs/applications-rs", rev = "7bb507e6b12f73c96f3a52f0578d0246a689f381" }
-
 tokio-native-tls = "0.3"  # For wss connections
 tokio = { version = "1", features = ["full"] }
-tokio-tungstenite = { version = "0.20", features = ["rustls-tls-webpki-roots"] }
+tokio-tungstenite = { version = "0.20", features = ["native-tls"] }
 hyper = { version = "0.14", features = ["client"] }
 reqwest = { version = "0.12", features = ["json", "multipart"] }
 futures = "0.3.31"

src-tauri/Cargo.toml

@@ -5,11 +5,12 @@ use std::sync::Arc;
 use tauri::{AppHandle, Emitter};
 use tokio::net::TcpStream;
 use tokio::sync::{mpsc, Mutex};
+use tokio_tungstenite::tungstenite::client::IntoClientRequest;
 use tokio_tungstenite::tungstenite::handshake::client::generate_key;
 use tokio_tungstenite::tungstenite::Message;
+use tokio_tungstenite::MaybeTlsStream;
 use tokio_tungstenite::WebSocketStream;
-use tokio_tungstenite::{connect_async, MaybeTlsStream};
-
+use tokio_tungstenite::{connect_async_tls_with_config, Connector};
 #[derive(Default)]
 pub struct WebSocketManager {
     connections: Arc<Mutex<HashMap<String, Arc<WebSocketInstance>>>>,
@@ -63,7 +64,22 @@ pub async fn connect_to_server(
         request.headers_mut().insert("X-API-TOKEN", token.parse().unwrap());
     }
 
-    let (ws_stream, _) = connect_async(request).await.map_err(|e| format!("WebSocket error: {:?}", e))?;
+    let tls_connector = tokio_native_tls::native_tls::TlsConnector::builder()
+        .danger_accept_invalid_certs(true) // 🔥 THIS IGNORES CERT VALIDATION
+        .build()
+        .map_err(|e| format!("TLS build error: {:?}", e))?;
+
+    let connector = Connector::NativeTls(tls_connector.into());
+
+    let (ws_stream, _) = connect_async_tls_with_config(
+        request,
+        None,             // WebSocketConfig
+        true,             // disable_nagle
+        Some(connector),  // Connector
+    )
+        .await
+        .map_err(|e| format!("WebSocket TLS error: {:?}", e))?;
+
     let (cancel_tx, mut cancel_rx) = mpsc::channel(1);
 
     let instance = Arc::new(WebSocketInstance {