Allow clear text HTTP traffic

[ghost]

Hi

First of all, I'm so happy that you updated this beautiful reader! I'm using it for a few years now for a freshrss server at home and I love it ;) There is no proper security involved because I use it only at home. Any chance to disable it? Otherwise, I could try self signed certificates but I guess android doesn't like it?!

What do you think?

Thanks again! Dan

[Alkarex]

Hello, I suggest you use HTTPS also at home. It is very easy to do with for instance Traefik, with automatic gratis HTTPS certificates https://github.com/FreshRSS/FreshRSS/issues/2918#issuecomment-616668682 https://github.com/FreshRSS/FreshRSS/tree/master/Docker

I have not tried recently in plain HTTP, can you please explain again what is not working?

Is it maybe related to https://github.com/Alkarex/EasyRSS/issues/55

[AeliusSaionji]

The latest update of this app refuses to connect over http. It throws an error saying http is not allowed. This is not true of the previous release.

I second this feature request. I access my LAN via a self hosted VPN and it seems rather silly that I am required to acquire externally validated https certs for my closed off internal network. I have my server configured to not allow traffic outside of my LAN- a restriction I must lift every time I need to get a new ssl cert.

I actually did go ahead and set up https anyway, but the app now reports http 400 errors.

[ghost]

I have the same set up like Aelius.

I have created self-signed certificates. As I mentioned before, I'm having some difficulties getting the app to work now. I have added the certificate to the Android system, but I still can't log on to the server now.

I am trying to log in at https://$host:$port/api/greader.php. The result of the link is 'OK'. The API password is set up.

There are no server logs because I can't get that far, I guess.

Android has some logs:

05-04 17:48:16.517 W/System.err(2575): org.freshrss.easyrss.network.AbsDataSyncer$DataSyncerException: java.security.cert.CertPathValidatorException: Trust anchor for certification path not found.

[Alkarex]

I will check to allow HTTP

[ghost]

Maybe you can implement that some how? https://gitlab.com/bitfireAT/cert4android

Sry, I don't know how hard it is :/

Edit: Btw I'm using the self sigend certificates for radicale & davx5 now. That's working.

[Alkarex]

The current /master branch seems to connect fine to a FreshRSS server over HTTP. I will issue a new build

[Alkarex]

https://github.com/Alkarex/EasyRSS/releases/tag/v0.7.6