Could Not Login!

[mp3tobi]

Hey, I just want to use your App.
But I Can't Login from your App.

Which Server Adress is needed?
I used: https://cloud.tobis-bu.de
And of course my right User Credentials.

But every Time i try it. "Failed to connect to a Server. Check your settings."

What's wrong?

[phedlund]

You are using an untrusted (self-signed) security certificate. That will not work.

[bastei]

untrusted (self-signed) security certificate. That will not work.

It will work, if you create a profile with your self-signed key with the help of the iPhone Configuration Utility and install the profile on your device.

By the way: You can also save the CardDAV and CalDAV preferences within the profile. So you can distribute it over your website. Then your users install it, enter their username and password and are ready to go!

[BernhardPosselt]

self signed certs are more secure in fact :)

[phedlund]

From reading available documentation I think the only option would be to allow any "invalid" certificate and I don't want to do that.

[BernhardPosselt]

It should ask the user if he wants to allow it/add the certt and show the fingerprint so he is able to check if its valid

[phedlund]

Maybe it should but I don't know of a way to do that. I have seen other apps using an on/off switch. Is that what we want?

[BernhardPosselt]

Not sure. Basically you want to give the user a way to verify that that certificate is valid. A different approach would be to let the user install the cert on his iphone. Maybe there are good apps for that

[theBOFH]

Hi there,

Also encountering this issue. I have an SSL cert from "StartSSL". It works fine with browsers and other apps but seems to be blocking this app. Is there anything I can do?

Thanks

[BernhardPosselt]

@theBOFH maybe apple does not ship the cert auth.

[schiessle]

I agree with @Raydiation. We need a way to accept certificates which are self signed or from a authority not known by the base system, e.g. CACert. We have a similar issue with the android app: nextcloud/news-android#47

All other apps i know (third party carddav/caldav clients or the official android client) can handle it properly.

[phedlund]

I will implement a switch similar to the Android app. Is anyone willing to provide me (support at peterandlinda dot com) with a demo user account so I can test various settings?

[mp3tobi]

@phedlund I send you an e-mail with some demo account credentials on my server. So you can maybe test the app with my self-signed certificate.
BTW: It's not my own certificate, but from my provider. :)

[mp3tobi]

@phedlund Well your commit could be a fast fix for the problem.
But I think it would be cool, if you read the documentation how to handle the self-signed certificates like in other apps.
Bring a warning that the certificate is insecure, but the user can accept this. Like in the iPhone Safari if you browse to https://frab.cccv.de/de/MRMCD2013/public/events
It's no insecure website, but the website also uses a self-signed certificate.

That would be very nice. Sorry I can't bring any help on this, since I can't write code in Objective-C. :(

[phedlund]

OK, I have made some progress on this. It will need some more changes than what I have committed so far, but it will work. Unfortunately, it can not, as far as I can find out, be handled as browsers do it.

[mp3tobi]

Ok. But the Switch for self-signed Certificates as in your commit looks like the right way. :)

[mp3tobi]

It works now. With your latest release 1.0.96 I can successfull login to my server.