Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
`getRemoteCertificates()` is ill-defined #378
It's getRemoteCertificates(), which would seem to imply that more than one certificate can be returned. There are scenarios in which it is possible for a certificate chain to be returned (e.g. a browser talking to a contact center gateway). However, how many WebRTC implementations currently validate a certificate chain used within DTLS?
The most typically suggested use of this method is to retrieve one or more certificates so as to be able to display information to the user. However, since it is up to the application what to do with the certificate(s), any information displayed to the user is potentially untrustworthy