Closed ghost closed 4 years ago
Hello, I suggest you use HTTPS also at home. It is very easy to do with for instance Traefik, with automatic gratis HTTPS certificates https://github.com/FreshRSS/FreshRSS/issues/2918#issuecomment-616668682 https://github.com/FreshRSS/FreshRSS/tree/master/Docker
I have not tried recently in plain HTTP, can you please explain again what is not working?
Is it maybe related to https://github.com/Alkarex/EasyRSS/issues/55
The latest update of this app refuses to connect over http. It throws an error saying http is not allowed. This is not true of the previous release.
I second this feature request. I access my LAN via a self hosted VPN and it seems rather silly that I am required to acquire externally validated https certs for my closed off internal network. I have my server configured to not allow traffic outside of my LAN- a restriction I must lift every time I need to get a new ssl cert.
I actually did go ahead and set up https anyway, but the app now reports http 400
errors.
I have the same set up like Aelius.
I have created self-signed certificates. As I mentioned before, I'm having some difficulties getting the app to work now. I have added the certificate to the Android system, but I still can't log on to the server now.
I am trying to log in at https://$host:$port/api/greader.php. The result of the link is 'OK'. The API password is set up.
There are no server logs because I can't get that far, I guess.
Android has some logs:
05-04 17:48:16.517 W/System.err(2575): org.freshrss.easyrss.network.AbsDataSyncer$DataSyncerException: java.security.cert.CertPathValidatorException: Trust anchor for certification path not found.
I will check to allow HTTP
Maybe you can implement that some how? https://gitlab.com/bitfireAT/cert4android
Sry, I don't know how hard it is :/
Edit: Btw I'm using the self sigend certificates for radicale & davx5 now. That's working.
The current /master branch seems to connect fine to a FreshRSS server over HTTP. I will issue a new build
Hi
First of all, I'm so happy that you updated this beautiful reader! I'm using it for a few years now for a freshrss server at home and I love it ;) There is no proper security involved because I use it only at home. Any chance to disable it? Otherwise, I could try self signed certificates but I guess android doesn't like it?!
What do you think?
Thanks again! Dan