tidev · hieupham007 · Feb 23, 2016 · FokkeZB · Feb 24, 2016
diff --git a/android/modules/network/src/java/ti/modules/titanium/network/HTTPClientProxy.java b/android/modules/network/src/java/ti/modules/titanium/network/HTTPClientProxy.java
@@ -217,7 +217,7 @@ public void setAutoRedirect(boolean value)
 	@Kroll.getProperty @Kroll.method
 	public boolean getValidatesSecureCertificate()
 	{
-		return client.validatesSecureCertificate();
+		return true;
 	}
 
 	@Kroll.setProperty @Kroll.method

diff --git a/...d/modules/network/src/java/ti/modules/titanium/network/NonValidatingSSLSocketFactory.java b/...d/modules/network/src/java/ti/modules/titanium/network/NonValidatingSSLSocketFactory.java
diff --git a/android/modules/network/src/java/ti/modules/titanium/network/NonValidatingTrustManager.java b/android/modules/network/src/java/ti/modules/titanium/network/NonValidatingTrustManager.java
diff --git a/android/modules/network/src/java/ti/modules/titanium/network/TiHTTPClient.java b/android/modules/network/src/java/ti/modules/titanium/network/TiHTTPClient.java
@@ -71,7 +71,6 @@
 import ti.modules.titanium.network.httpurlconnection.HttpUrlConnectionUtils;
 import ti.modules.titanium.network.httpurlconnection.JsonBody;
 import ti.modules.titanium.network.httpurlconnection.NameValuePair;
-import ti.modules.titanium.network.httpurlconnection.NullHostNameVerifier;
 import ti.modules.titanium.network.httpurlconnection.StringBody;
 import ti.modules.titanium.network.httpurlconnection.StringEntity;
 import ti.modules.titanium.network.httpurlconnection.FileBody;
@@ -401,20 +400,6 @@ public int getReadyState()
 		return readyState;
 	}
 
-	public boolean validatesSecureCertificate()
-	{
-		if (proxy.hasProperty("validatesSecureCertificate")) {
-			return TiConvert.toBoolean(proxy.getProperty("validatesSecureCertificate"));
-
-		} else {
-			if (TiApplication.getInstance().getDeployType().equals(
-					TiApplication.DEPLOY_TYPE_PRODUCTION)) {
-				return true;
-			}
-		}
-		return false;
-	}
-
 	/*
 	public void addAuthFactory(String scheme, AuthSchemeFactory theFactory)
 	{
@@ -890,7 +875,7 @@ private int addTitaniumFileAsPostData(String name, Object value)
 		return 0;
 	}
 
-	private void setUpSSL(boolean validating, HttpsURLConnection securedConnection)
+	private void setUpSSL(HttpsURLConnection securedConnection)
 	{
 		SSLSocketFactory sslSocketFactory = null;
 
@@ -928,15 +913,7 @@ private void setUpSSL(boolean validating, HttpsURLConnection securedConnection)
 		            Log.e(TAG, "Error creating SSLSocketFactory: " + e.getMessage());
 		            sslSocketFactory = null;
 		        }
-		    } else if (!validating) {
-		        TrustManager trustManagerArray[] = new TrustManager[] { new NonValidatingTrustManager() };
-		        try {
-		            sslSocketFactory = new TiSocketFactory(null, trustManagerArray, tlsVersion);
-		        } catch(Exception e) {
-		            Log.e(TAG, "Error creating SSLSocketFactory: " + e.getMessage());
-		            sslSocketFactory = null;
-		        }
-		    } else {
+		    }  else {
 		        try {
 		            sslSocketFactory = new TiSocketFactory(null, null, tlsVersion);
 		        } catch(Exception e) {
@@ -948,12 +925,6 @@ private void setUpSSL(boolean validating, HttpsURLConnection securedConnection)
 
 		if (sslSocketFactory != null) {
 			securedConnection.setSSLSocketFactory(sslSocketFactory);
-		} else if (!validating) {
-			securedConnection.setSSLSocketFactory(new NonValidatingSSLSocketFactory());
-		} 
-
-		if (!validating) {
-			securedConnection.setHostnameVerifier(new NullHostNameVerifier());
 		}
 		// Fortunately, HttpsURLConnection supports SNI since Android 2.3.
 		// We don't have to handle SNI explicitly 
@@ -1119,7 +1090,7 @@ public void run()
 
 					if (client instanceof HttpsURLConnection) {
 					    HttpsURLConnection securedConnection = (HttpsURLConnection) client;
-					    setUpSSL(validatesSecureCertificate(), securedConnection);
+					    setUpSSL(securedConnection);
 					}					
 
 					if (timeout != -1) {