New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Download apk via captive portal #247
Comments
Two points here:
Your initial problem is due to point 1. However to get round point 1 you can run another web server, lighttpd is one that I use. |
Hi @bluewavenet thank you for your support. |
@nomercy0
In the php code of your post authentication page in FAS, it is a simple matter to send the file to the client and many examples of code can be found with a quick search on Google. |
hi @bluewavenet CPD invoked browser is not allowing to download files, however normally opened browser is allowing to download files.Is there a way to switch browser from CPD opened browser to normal browser |
As this is a security feature on the mobile devices, I think there is no way to switch and if one was found a security patch would rapidly be rolled out. |
It is being downloaded when I use https but security issue comes forward
How can it be prevented using wget I dont understand |
You can use wget (or curl) to signal from FAS to NDS and prevent certificate errors, but still need a proper (non-self signed) certificate on FAS. |
hi @bluewavenet Sorry to disturb you again and again.I am new to networking ,I don't know which particular file I need to change to make this happen .Please suggest me |
If you are running FAS on your NDS then you do a php exec call to wget, passing the html "get" directly to NDS rather than via the client browser. |
hi @bluewavenet I have used wget in function acceptance with php exec function but still security issue occurs.This may be the case because (login) function comes before (acceptance)
|
At which point are you getting the error? |
I have generated certificate using open ssl and I am not getting any error ,login page opens with security issue as previous ,I have changed the acceptance function as you said .In fas.php login function is called first but how changing acceptance function will solve the security issue I dont understand .Can you please share me wget code details with me or show me implementation by yourself ,it will be highly appreciated |
If you accept the certificate error does it all work? |
To clarify what is happening:
|
Yes when I accept Certificate error it works fine.I looking forward to your given solution .Thanks |
Sorry, my solution is that you must use an ssl certificate from a registered CA, ie one the client browser will accept without making an exception. |
Trusted certificates don't work for local development because nobody uniquely owns it |
It is possible, for example, to generate a trusted certificate for the URL (letsencrypt does this), then have the internal web server respond, via your local DNS. It is problematic though as the live of the cert is only 90 days so needs regular renewal. As I mentioned above, simplest of all, why not just send the clients an email with a link to the app? I hope you don't mind me asking but why are you wanting android visitors to download an app anyway? As you can see the Android developers (and iOS devs) have gone out of their way to prevent this through a CP. |
Each Assets of our android app is heavy around (6-8mb) so we want to fetch it locally through local server.So if assets are fetched locally why not apk file get downloaded automatically when client connects to wifi locally ,we don't want authentication system of captive portal if apk file can be downloaded automatically through local server (our use case is only to download file because providing link to google play and downloading file remotely and after downloading fetch assets locally does not make sense ,it is out of customer experience) .If you can guide how it can be achieved without sending link in email |
This is working against all the security measures built into android. |
I am aware of issue when apk gets downloaded from unknown sources. |
This is a security issue and as far as I know, automatically downloading and installing an apk from a captive portal is blocked by Android and if it is not, it should be. |
hi @bluewavenet , |
Playstore does not come into it. |
hi @bluewavenet Not needed I figured it out my self |
allow tcp port 443 to 206.189.132.16 ? |
hi @bluewavenet |
The CPD will automatically pop up the initial splash screen as you know. |
CPD is not automatically popping up ,first it shows sign in into network then after clicking that CPD comes out. I want to make this process automatic I mean that. |
CPD is designed to invoke as soon as a user of the device connects to the captive portal WiFi and only when the user connects. If the device is already connected the response depends on the vendor implementation on the device. Some will pop up the splash page after a time interval, others will give some sort of notification, such as "Sign in to the Network". |
Hi we are making an apk file that will be downloaded via raspberry pi when someone connects to the wifi network .
For this we installed nodogsplash which opens the captive portal and we gave an a href link that references the apk file relatively
We assumed this would download the apk file just like it downloads the default image "splash.img"
Can this be done in some way ? Please guide us .
The text was updated successfully, but these errors were encountered: